NVD

Id
58718  
Name
CVE-2007-6724  
Description
Vidalia bundle before 0.1.2.18, when running on Windows, installs Privoxy with a configuration file (config.txt or config) that contains an insecure enable-remote-http-toggle setting, which allows remote attackers to bypass intended access restrictions and modify configuration.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2009-03-31  
Modified Date
2012-10-09  
Seq
2007-6724  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
301221 58718 CVE-2007-6724 [or-talk] 20071031 Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18  View
301222 58718 CVE-2007-6724 vidalia-enableremotehttptoggle-sec-bypass(50474)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40433 JVNDB-2009-001439 Vidalia bundle におけるアクセス制限回避の脆弱性 Windows および Mac OS X で稼動し、安全でない enable-remote-http-toggle を含む設定ファイルを持つ Privoxy をインストールする Vidalia bundle には、アクセス制限回避の脆弱性が存在します。 CVE-2007-6724 30079 CVE-2007-6724 58718 10 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001439.html 2009-03-31 2009-06-30 View