NVD

Id
58405  
Name
CVE-2007-6410  
Description
Gadu-Gadu does not properly perform protocol handling, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and add arbitrary user accounts or cause a denial of service as administrators via an unspecified "crafted link," possibly related to the gg protocol.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-12-17  
Modified Date
2008-09-05  
Seq
2007-6410  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
299545 58405 CVE-2007-6410 3458  View
299546 58405 CVE-2007-6410 20071205 [ELEYTT] Public Advisory 05-12-2007  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
54312 JVNDB-2007-003004 Gadu-Gadu におけるクロスサイトリクエストフォージェリ攻撃の脆弱性 Gadu-Gadu は、プロトコル処理を適切に行わないため、クロスサイトリクエストフォージェリ攻撃を実行される、および任意のユーザを追加される、または管理者アカウントでサービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2007-6410 29765 CVE-2007-6410 58405 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-003004.html 2007-12-17 2012-06-26 View