Vulnerabilities > CVE-2007-2595 - Unspecified vulnerability in Rscript Rsauction 2.73.1.3

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

rscript

NVD

Published: 2007-05-11

Updated: 2017-07-29

Summary

RSAuction 2.73.1.3 allows remote authenticated users to move their own account status from Suspended to Active via a direct request for the activation URL that is provided at the time of account registration. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part	Description	Count
Application	Rscript Rscript Rsauction 2.73.1.3	1

References

http://osvdb.org/35870
http://secunia.com/advisories/25149
http://www.securityfocus.com/bid/23895
https://exchange.xforce.ibmcloud.com/vulnerabilities/34192