CVE-2007-5835 in BosNewsinfo

Summary

Install.php in BosDev BosNews 4 and 5 does not require authentication for replacing an existing product installation or creating a new admin account, which allows remote attackers to cause a denial of service (overwritten files) and possibly obtain administrative access.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

11/05/2007

Disclosure

11/05/2007

Moderation

VulDB entry created

Entries

1: VDB-39583

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

5.3

EPSS

0.00906

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5835
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5835
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5835/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!