CVE-2007-1540

Name of the Vulnerable Software and Affected Versions SQL-Ledger versions 2.6.27 and earlier LedgerSMB versions prior to 1.2.0

Description A directory traversal issue allows remote attackers to run arbitrary executables and bypass authentication. This is achieved by using a .. (dot dot) sequence and a trailing NULL (%00) in the login parameter.

Recommendations For SQL-Ledger versions 2.6.27 and earlier, consider updating to a version where this issue is reportedly addressed, although the effectiveness of this fix is disputed. For LedgerSMB versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the am.pl file to minimize the risk of exploitation.