CVE-2007-1541

Directory traversal vulnerability in am.pl in SQL-Ledger 2.6.27 only checks for the presence of a NULL (%00) character to protect against directory traversal attacks, which allows remote attackers to run arbitrary executables and bypass authentication via a .. (dot dot) sequence in the login parameter.

Published: Mar 20, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-1541
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
sql-ledger / sql-ledger	2.6.27	2.6.27.x

http://secunia.com/advisories/24560
http://sql-ledger.com/cgi-bin/nav.pl?page=news.html&title=What's%20New
http://sql-ledger.com/cgi-bin/nav.pl?page=news.html&title=What%27s%20New
http://www.securityfocus.com/archive/1/463175/100/0/threaded
http://www.securityfocus.com/bid/23034
http://www.vupen.com/english/advisories/2007/1025

Vulnerability Database

CVE-2007-1541