Ignite Realtime Openfire Unspecified Privilege Escalation Vulnerability
BID:24205
Info
Ignite Realtime Openfire Unspecified Privilege Escalation Vulnerability
| Bugtraq ID: | 24205 |
| Class: | Unknown |
| CVE: |
CVE-2007-2975 |
| Remote: | Yes |
| Local: | No |
| Published: | May 29 2007 12:00AM |
| Updated: | May 07 2015 05:37PM |
| Credit: | The vendor disclosed this vulnerability. |
| Vulnerable: |
Igniterealtime Openfire 3.3 |
| Not Vulnerable: |
Igniterealtime Openfire 3.3.1 |
Discussion
Ignite Realtime Openfire Unspecified Privilege Escalation Vulnerability
Openfire is prone to an unspecified privilege-escalation vulnerability.
An attacker can exploit this issue to obtain escalated privileges. A successful attack can result in a compromise in the context of the affected application.
Openfire 3.3.0 and prior versions are vulnerable to this issue.
Openfire is prone to an unspecified privilege-escalation vulnerability.
An attacker can exploit this issue to obtain escalated privileges. A successful attack can result in a compromise in the context of the affected application.
Openfire 3.3.0 and prior versions are vulnerable to this issue.
Exploit / POC
Ignite Realtime Openfire Unspecified Privilege Escalation Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Ignite Realtime Openfire Unspecified Privilege Escalation Vulnerability
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Igniterealtime Openfire 3.3
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Igniterealtime Openfire 3.3
-
Ignite Realtime openfire-3.3.1-1.i386.rpm
http://www.igniterealtime.org/downloads/download-landing.jsp?file=open fire/openfire-3.3.1-1.i386.rpm -
Ignite Realtime openfire_3_3_1.dmg
http://www.igniterealtime.org/downloads/download-landing.jsp?file=open fire/openfire_3_3_1.dmg -
Ignite Realtime openfire_3_3_1.exe
http://www.igniterealtime.org/downloads/download-landing.jsp?file=open fire/openfire_3_3_1.exe
References
Ignite Realtime Openfire Unspecified Privilege Escalation Vulnerability
References:
References:
- JM-1049 - Security Fix (Ignite Realtime)
- Vendor Homepage (Ignite Realtime)