CVE-2007-0383 - Vulnerability Details - OpenCVE

WDaemon 9.5.4 allows remote attackers to access the /WorldClient.dll URI on TCP port 3000, which has unknown impact. NOTE: The researcher reports that the vendor response was "this is not a security bug.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Wdaemon	Wdaemon

Configuration 1 [-]

OR	cpe:2.3:a:wdaemon:wdaemon:7.2.0:::::::*
	cpe:2.3:a:wdaemon:wdaemon:9.0.4:::::::*
	cpe:2.3:a:wdaemon:wdaemon:9.5.4:::::::*

No data.

References

Link	Providers
http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html
http://osvdb.org/34661
http://www.hackers.ir/advisories/festival.txt

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-01-19T23:00:00

Updated: 2024-08-07T12:19:29.831Z

Reserved: 2007-01-19T00:00:00

Link: CVE-2007-0383

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-01-19T23:28:00.000

Modified: 2024-11-21T00:25:43.583

Link: CVE-2007-0383

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-01-18T00:00:00", "descriptions": [{"lang": "en", "value": "WDaemon 9.5.4 allows remote attackers to access the /WorldClient.dll URI on TCP port 3000, which has unknown impact. NOTE: The researcher reports that the vendor response was \"this is not a security bug."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2008-11-13T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20070118 The vulnerabilities festival !", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html"}, {"name": "34661", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/34661"}, {"tags": ["x_refsource_MISC"], "url": "http://www.hackers.ir/advisories/festival.txt"}], "tags": ["disputed"], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-0383", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "** DISPUTED ** WDaemon 9.5.4 allows remote attackers to access the /WorldClient.dll URI on TCP port 3000, which has unknown impact. NOTE: The researcher reports that the vendor response was \"this is not a security bug.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20070118 The vulnerabilities festival !", "refsource": "FULLDISC", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html"}, {"name": "34661", "refsource": "OSVDB", "url": "http://osvdb.org/34661"}, {"name": "http://www.hackers.ir/advisories/festival.txt", "refsource": "MISC", "url": "http://www.hackers.ir/advisories/festival.txt"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T12:19:29.831Z"}, "title": "CVE Program Container", "references": [{"name": "20070118 The vulnerabilities festival !", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html"}, {"name": "34661", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/34661"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.hackers.ir/advisories/festival.txt"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-0383", "datePublished": "2007-01-19T23:00:00", "dateReserved": "2007-01-19T00:00:00", "dateUpdated": "2024-08-07T12:19:29.831Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wdaemon:wdaemon:7.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "6D7D6236-6FB3-4C14-B2AB-9937AD06CA11", "vulnerable": true}, {"criteria": "cpe:2.3:a:wdaemon:wdaemon:9.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "BFF79AC2-6846-4380-BB56-094BB8FE6BED", "vulnerable": true}, {"criteria": "cpe:2.3:a:wdaemon:wdaemon:9.5.4:*:*:*:*:*:*:*", "matchCriteriaId": "30554386-7358-4622-928F-CC3AB94102D3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [{"sourceIdentifier": "cve@mitre.org", "tags": ["disputed"]}], "descriptions": [{"lang": "en", "value": "WDaemon 9.5.4 allows remote attackers to access the /WorldClient.dll URI on TCP port 3000, which has unknown impact. NOTE: The researcher reports that the vendor response was \"this is not a security bug."}, {"lang": "es", "value": "** IMPUGNADO ** WDaemon 9.5.4 permite a atacantes remotos acceder al URI /WorldClient.dll sobre puerto TCP 3000, lo cual tiene un impacto desconocido. NOTA: El investigador indica que la respuesta del vendedor fue \"no es un bug de seguridad\"."}], "id": "CVE-2007-0383", "lastModified": "2024-11-21T00:25:43.583", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-01-19T23:28:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Vendor Advisory"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/34661"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.hackers.ir/advisories/festival.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Vendor Advisory"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0355.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/34661"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.hackers.ir/advisories/festival.txt"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}