Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-4909
HistorySep 17, 2007 - 5:17 p.m.

CVE-2007-4909

2007-09-1717:17:00
CWE-264
mitre
web.nvd.nist.gov
27
cve-2007-4909
winscp
remote attackers
arbitrary file transfers
file-transfer commands
remote server
url
scp
sftp
ftp
incomplete fix
cve-2006-3015

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.1

Confidence

Low

EPSS

0.088

Percentile

94.6%

JSON

Interpretation conflict in WinSCP before 4.0.4 allows remote attackers to perform arbitrary file transfers with a remote server via file-transfer commands in the final portion of a (1) scp, and possibly a (2) sftp or (3) ftp, URL, as demonstrated by a URL specifying login to the remote server with a username of scp, which is interpreted as an HTTP scheme name by the protocol handler in a web browser, but is interpreted as a username by WinSCP. NOTE: this is related to an incomplete fix for CVE-2006-3015.

Affected configurations

Nvd
Node
winscpwinscpMatch2.0.0
OR
winscpwinscpMatch3.5.5_beta
OR
winscpwinscpMatch3.5.6
OR
winscpwinscpMatch3.6
OR
winscpwinscpMatch3.6.1
OR
winscpwinscpMatch3.6.5_beta
OR
winscpwinscpMatch3.6.6
OR
winscpwinscpMatch3.6.7
OR
winscpwinscpMatch3.8.1
OR
winscpwinscpMatch3.8.2
OR
winscpwinscpMatch4.0.2
OR
winscpwinscpMatch4.0.3
VendorProductVersionCPE
winscpwinscp2.0.0cpe:2.3:a:winscp:winscp:2.0.0:*:*:*:*:*:*:*
winscpwinscp3.5.5_betacpe:2.3:a:winscp:winscp:3.5.5_beta:*:*:*:*:*:*:*
winscpwinscp3.5.6cpe:2.3:a:winscp:winscp:3.5.6:*:*:*:*:*:*:*
winscpwinscp3.6cpe:2.3:a:winscp:winscp:3.6:*:*:*:*:*:*:*
winscpwinscp3.6.1cpe:2.3:a:winscp:winscp:3.6.1:*:*:*:*:*:*:*
winscpwinscp3.6.5_betacpe:2.3:a:winscp:winscp:3.6.5_beta:*:*:*:*:*:*:*
winscpwinscp3.6.6cpe:2.3:a:winscp:winscp:3.6.6:*:*:*:*:*:*:*
winscpwinscp3.6.7cpe:2.3:a:winscp:winscp:3.6.7:*:*:*:*:*:*:*
winscpwinscp3.8.1cpe:2.3:a:winscp:winscp:3.8.1:*:*:*:*:*:*:*
winscpwinscp3.8.2cpe:2.3:a:winscp:winscp:3.8.2:*:*:*:*:*:*:*
Rows per page:
1-10 of 121

Related

cvelist 2
prion 1
nvd 2
kaspersky 2
exploitdb 2
nessus 2
cve 1
cert 1
cvelist
cvelist
CVE-2007-4909
2007-09-17 17:00:00
CVE-2006-3015
2006-06-14 15:00:00
prion
prion
Design/Logic Flaw
2007-09-17 17:17:00
nvd
nvd
CVE-2007-4909
2007-09-17 17:17:00
CVE-2006-3015
2006-06-14 15:06:00
kaspersky
kaspersky
KLA11447 ACE vulnerability in WinSCP
2007-09-07 00:00:00
KLA11446 SB vulnerability in WinSCP
2006-06-14 00:00:00
exploitdb
exploitdb
WinSCP 4.0.3 - URL Protocol Handler Arbitrary File Access
2007-09-13 00:00:00
WinSCP 3.8.1 - URI Handler Arbitrary File Access
2006-06-12 00:00:00
nessus
nessus
WinSCP URL Protocol Handler Arbitrary File Transfer
2007-09-14 00:00:00
WinSCP URI Handler Arbitrary File Access
2006-06-21 00:00:00
cve
cve
CVE-2006-3015
2006-06-14 15:06:00
cert
cert
WinSCP URI handlers fails to properly parse command line switches
2006-06-22 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.1

Confidence

Low

EPSS

0.088

Percentile

94.6%

JSON
Related for CVE-2007-4909
cvelist2prion1nvd2kaspersky2exploitdb2nessus2cve1cert1