What is the severity of CVE-2007-6273?

CVE-2007-6273 has a medium severity rating due to its ability to allow remote code execution through user-assisted attacks.

How do I fix CVE-2007-6273?

To fix CVE-2007-6273, you should update the SonicWALL Global VPN Client to the latest version that patches this vulnerability.

Who is affected by CVE-2007-6273?

CVE-2007-6273 affects users of SonicWALL Global VPN Client versions 3.1.556 and 4.0.0.810.

Can CVE-2007-6273 be exploited remotely?

Yes, CVE-2007-6273 can be exploited remotely, but it requires user assistance to trigger the execution of arbitrary code.

Vulnerability/
CVE-2007-6273

critical

9.3

CWE

134

7/12/2007

7/8/2024

CVE-2007-6273

First published: Fri Dec 07 2007(Updated: )

Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the (1) Hostname tag or the (2) name attribute in the Connection tag. NOTE: there might not be any realistic circumstances in which this issue crosses privilege boundaries.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Sonicwall Global Vpn Client	=3.1.556
Sonicwall Global Vpn Client	=4.0.0.810
SonicWALL GLobal VPN Client	=3.1.556
SonicWALL GLobal VPN Client	=4.0.0.810

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-6273?
CVE-2007-6273 has a medium severity rating due to its ability to allow remote code execution through user-assisted attacks.
How do I fix CVE-2007-6273?
To fix CVE-2007-6273, you should update the SonicWALL Global VPN Client to the latest version that patches this vulnerability.
Who is affected by CVE-2007-6273?
CVE-2007-6273 affects users of SonicWALL Global VPN Client versions 3.1.556 and 4.0.0.810.
What causes the vulnerability in CVE-2007-6273?
The vulnerability in CVE-2007-6273 is caused by multiple format string vulnerabilities in the configuration file of the SonicWALL Global VPN Client.
Can CVE-2007-6273 be exploited remotely?
Yes, CVE-2007-6273 can be exploited remotely, but it requires user assistance to trigger the execution of arbitrary code.

collector/nvd-historical
collector/nvd-index
agent/type
agent/references
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/last-modified-date
agent/weakness
agent/tags
agent/description
agent/event
agent/first-publish-date
agent/source
vendor/sonicwall
canonical/sonicwall global vpn client
version/sonicwall global vpn client/3.1.556
version/sonicwall global vpn client/4.0.0.810

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.