PT-2007-1838 · Maxum · Rumpus

Published

2007-01-19

Updated

2008-11-15

CVE-2007-0367

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Rumpus versions 5.1 and earlier

Description: The issue concerns weak permissions for certain files and directories under /usr/local/Rumpus, including the configuration file. This weakness allows local users to create, modify, or delete files, potentially having an unknown impact.

Recommendations: For versions 5.1 and earlier, update the permissions of the affected files and directories under /usr/local/Rumpus to prevent unauthorized access. As a temporary workaround, consider restricting access to the configuration file and other sensitive directories to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0367

Affected Products

Rumpus

PT-2007-1838 · Maxum · Rumpus

CVE-2007-0367

Related Identifiers

Affected Products

References · 4