Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2007-6483

Published: 20/12/2007 Updated: 15/10/2018
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 510
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Subscribe to Safenet

Vulnerability Summary

Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.0.0 up to and including 7.4.0 and possibly earlier versions, and Sentinel Keys Server 1.0.3 and possibly earlier versions, allows remote malicious users to read arbitrary files via a .. (dot dot) in the query string.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

safenet sentinel protection server 7.0

safenet sentinel protection server 7.1

safenet sentinel protection server 7.4

safenet sentinel keys server 1.0.3

safenet sentinel protection server 7.2

safenet sentinel protection server 7.3

Exploits

Exploit DB: SafeNet Sentinel Directory Traversal
SafeNet Sentinel Protection Server versions 70 through 74 and Keys Server versions 103 through 104 suffer from a directory traversal vulnerability ...
Exploit DB: SafeNet Sentinel Protection Server 7.x/Keys Server 1.0.3 - Directory Traversal
source: wwwsecurityfocuscom/bid/26583/info Sentinel Protection Server and Keys Server are prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data Exploiting this issue may allow an attacker to access sensitive information that could aid in further attacks This issue affects Prote ...
Exploit DB: SafeNet Sentinel Protection Server 7.0 < 7.4 / Sentinel Keys Server 1.0.3 < 1.0.4 - Directory Traversal
#!/usr/bin/python # # Exploit Title: SafeNet Sentinel Protection Server 70 - 74 and Sentinel Keys Server 103 - 104 Directory Traversal # Date: 04/28/2014 # Exploit Author: Matt Schmidt (Syph0n) # Vendor Homepage: wwwsafenet-inccom/ # Software Link: c3safenet-inccom/downloads/2/1/21DAC8BE-72DE-4D32-85D4-6A1FC600581E/Sentinel ...

Github Repositories

https://github.com/syph0n/Exploits

Nothing to see here - test repo

EXPLOITS CVE-2007-6483 SafeNet Sentinel Protection Server 70 &lt; 74 / Sentinel Keys Server 103 &lt; 104 - Directory Traversal CVE-2014-2647 HP Operations Agent - Cross-Site Scripting iFrame Injection

References

CWE-22http://safenet-inc.com/support/files/SPI740SecurityPatch.ziphttp://www.securityfocus.com/bid/26583http://www.securitytracker.com/id?1018992http://secunia.com/advisories/27811http://securityreason.com/securityalert/3471http://www.vupen.com/english/advisories/2007/4011https://ics-cert.us-cert.gov/advisories/ICSA-15-272-01https://exchange.xforce.ibmcloud.com/vulnerabilities/38636http://www.securityfocus.com/archive/1/484224/100/200/threadedhttp://www.securityfocus.com/archive/1/484201/100/200/threadedhttps://nvd.nist.govhttps://github.com/syph0n/Exploitshttps://packetstormsecurity.com/files/126725/SafeNet-Sentinel-Directory-Traversal.htmlhttps://www.exploit-db.com/exploits/30809/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook