CVE-2007-3260 | Vulnerability Database | Aqua Security

HP System Management Homepage (SMH) before 2.1.9 for Linux, when used with Novell eDirectory, assigns the eDirectory members to the root group, which allows remote authenticated eDirectory users to gain privileges.

Affected Software

Name	Vendor	Start Version	End Version
System_management_homepage	Hp	*	2.1.8 (including)

References

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c01072894
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c01072894
http://osvdb.org/37513
http://secunia.com/advisories/25689
http://www.securityfocus.com/bid/24486
http://www.securitytracker.com/id?1018256
http://www.vupen.com/english/advisories/2007/2232
https://exchange.xforce.ibmcloud.com/vulnerabilities/34900
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c01072894
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c01072894
http://osvdb.org/37513
http://secunia.com/advisories/25689
http://www.securityfocus.com/bid/24486
http://www.securitytracker.com/id?1018256
http://www.vupen.com/english/advisories/2007/2232
https://exchange.xforce.ibmcloud.com/vulnerabilities/34900

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3260
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html