Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns from execution.
Advisories
Source ID Title
EUVD EUVD EUVD-2007-1431 Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns from execution.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-07T12:59:08.465Z

Reserved: 2007-03-13T00:00:00

Link: CVE-2007-1437

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2007-03-13T19:19:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-1437

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.