cbcvebase.
CVE-2007-1057
published 2007-02-21

CVE-2007-1057: The Net Direct client for Linux before 6.0.5 in Nortel Application Switch 2424, VPN 3050 and 3070, and SSL VPN Module 1000 extracts and executes files with…

PriorityP427medium6.9CVSS 2.0
AVLACMAuNCCICAC
EXPLOIT
EPSS
1.11%
61.7th percentile
The Net Direct client for Linux before 6.0.5 in Nortel Application Switch 2424, VPN 3050 and 3070, and SSL VPN Module 1000 extracts and executes files with insecure permissions, which allows local users to exploit a race condition to replace a world-writable file in /tmp/NetClient and cause another user to execute arbitrary code when attempting to execute this client, as demonstrated by replacing /tmp/NetClient/client.

Affected

1 ranges
VendorProductVersion rangeFixed in
nortelnet_direct_client<= 6.0.4
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.