CVE-2007-2713
published 2007-05-16CVE-2007-2713: ifdate 2.x sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to obtain…
PriorityP347critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
2.66%
83.8th percentile
ifdate 2.x sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to obtain administrative access via a direct request for the admin/ URI.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ifusionservices | ifdate | — | — |
| ifusionservices | ifdate | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
CWE
Execution After Redirect (EAR)
mitre_cwe·CVSS 10.0
[CRITICAL] CWE-698 Execution After Redirect (EAR)
CWE-698: Execution After Redirect (EAR)
The web application sends a redirect to another location, but instead of exiting, it executes additional code.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Other, Confidentiality, Integrity, Availability. Impact: Alter Execution Logic, Execute Unauthorized Code or Commands. This weakness could affect the control flow of the application and allow execution of untrusted code.
Detection Methods:
Black Box: This issue might not be detected if testing is performed using a web browser, because the browser might obey the redirect and move the user to a different page before the application has produced outputs that indicate something is amiss.
Examples:
This code queries a server and displays its status when a request comes
CWE
Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')
mitre_cwe
CWE-95 Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')
CWE-95: Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')
The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes code syntax before using the input in a dynamic evaluation call (e.g. "eval").
Modes of Introduction:
Phase: Implementation
Note: REALIZATION: This weakness is caused during implementation of an architectural security tactic.
Phase: Implementation
Note: This weakness is prevalent in handler/dispatch procedures that might want to invoke a large number of functions, or set a large number of variables.
Common Consequences:
Scope: Confidentiality. Impact: Read Files or Directories, Read Application Data. The injected code could access restricted data / files.
Scope: Access Control. Impact:
http://osvdb.org/36173http://secunia.com/advisories/25237http://securityreason.com/securityalert/2707http://www.expw0rm.com/ifdate-2-unauthorized-administrative-access-bug_no285.htmlhttp://www.securityfocus.com/archive/1/468545/100/0/threadedhttp://www.securityfocus.com/bid/23971https://exchange.xforce.ibmcloud.com/vulnerabilities/34257http://osvdb.org/36173http://secunia.com/advisories/25237http://securityreason.com/securityalert/2707http://www.expw0rm.com/ifdate-2-unauthorized-administrative-access-bug_no285.htmlhttp://www.securityfocus.com/archive/1/468545/100/0/threadedhttp://www.securityfocus.com/bid/23971https://exchange.xforce.ibmcloud.com/vulnerabilities/34257
2007-05-16
Published