Lucene search
MitreCVE-2015-7698HistoryOct 21, 2015 - 6:59 p.m.
CVE-2015-7698
2015-10-2118:59:06
CWE-78
mitre
web.nvd.nist.gov
20
cve-2015-7698
smb
remote execution
authentication
shell metacharacters
server.php
share.php
nvd
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.005
Percentile
76.1%
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the (1) listShares function in Server.php or the (2) connect or (3) read function in Share.php.
Affected configurations
Node
owncloudsmbRange≤1.0.2
Node
owncloudowncloudRange≤8.1.1
Related
owncloud
owncloud
Command injection when using external SMB storage - ownCloud
2015-09-30 18:53:46
Server: Command injection when using external SMB storage
2015-09-30 16:53:51
prion
prion
Command injection
2015-10-21 18:59:00
cvelist
cvelist
CVE-2015-7698
2015-10-21 18:00:00
nvd
nvd
CVE-2015-7698
2015-10-21 18:59:06
ubuntucve
ubuntucve
CVE-2015-7698
2015-10-21 00:00:00
openvas
openvas
ownCloud <= 8.1.1 RCE Vulnerability (oC-SA-2015-017)
2021-09-21 00:00:00
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.005
Percentile
76.1%
Related for CVE-2015-7698