Vulnerabilities > CVE-2007-2429 - Remote Unauthorized Access vulnerability in ManageEngine Password Manager Pro Database
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
ManageEngine PasswordManager Pro (PMP) allows remote attackers to obtain administrative access to a database by injecting a certain command line for the mysql program, as demonstrated by the "-port 2345" and "-u root" arguments. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | ManageEngine Password Manager Pro Build 5401 Database Remote Unauthorized Access Vulnerability. CVE-2007-2429. Remote exploits for multiple platform |
| id | EDB-ID:29931 |
| last seen | 2016-02-03 |
| modified | 2007-04-27 |
| published | 2007-04-27 |
| reporter | anonymous |
| source | https://www.exploit-db.com/download/29931/ |
| title | ManageEngine Password Manager Pro Build 5401 Database Remote Unauthorized Access Vulnerability |