Lucene search
HistoryOct 19, 2007 - 11:17 p.m.
CVE-2007-5593
cve-2007-5593
drupal
remote code execution
nvd
security vulnerability
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.117 Low
EPSS
Percentile
95.3%
install.php in Drupal 5.x before 5.3, when the configured database server is not reachable, allows remote attackers to execute arbitrary code via vectors that cause settings.php to be modified.
Affected configurations
Node
drupaldrupalRange5.0–5.3
Node
fedoraprojectfedoraMatch7
| CPE | Name | Operator | Version |
|---|---|---|---|
| drupal:drupal | drupal | lt | 5.3 |
References
Related
cvelist
cvelist
CVE-2007-5593
2007-10-19 23:00:00
prion
prion
Design/Logic Flaw
2007-10-19 23:17:00
nvd
nvd
CVE-2007-5593
2007-10-19 23:17:00
ubuntucve
ubuntucve
CVE-2007-5593
2007-10-19 00:00:00
openvas
openvas
FreeBSD Ports: drupal4
2008-09-04 00:00:00
FreeBSD Ports: drupal4
2008-09-04 00:00:00
Fedora Update for drupal FEDORA-2007-2649
2009-02-27 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: drupal-5.3-1.fc7
2007-10-24 07:15:27
nessus
nessus
FreeBSD : drupal --- multiple vulnerabilities (9c00d446-8208-11dc-9283-0016179b2dd5)
2007-10-25 00:00:00
Fedora 7 : drupal-5.3-1.fc7 (2007-2649)
2007-11-06 00:00:00
freebsd
freebsd
drupal --- multiple vulnerabilities
2007-10-17 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.117 Low
EPSS
Percentile
95.3%
Related for CVE-2007-5593