CVE-2015-7698 in icewind1991 SMBinfo

Summary

icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the (1) listShares function in Server.php or the (2) connect or (3) read function in Share.php.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

10/04/2015

Disclosure

10/21/2015

Moderation

VulDB entry created

Entries

1: VDB-78712

CPE

ready

CWE

CWE-78 (Confirmed)

CVSS

6.3

EPSS

0.00913

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-7698
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-7698
CVE Details	https://www.cvedetails.com/cve/CVE-2015-7698/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!