CVE-2007-2923
Novell exteNd Director 4.1 - Remote Code Execution via LocalExec ActiveX Control
Title source: llmDescription
The launch method in the LocalExec ActiveX control (LocalExec.ocx) in Novell exteNd Director 4.1 and Portal Services allows remote attackers to execute arbitrary commands.
References (9)
Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/37318
Vendor Advisory x_refsource_confirm
https://secure-support.novell.com/KanisaPlatform/Publishing/360/3169416_f.SAL_Public.html
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/793433
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2235
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34898
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25710
Vendor Advisory x_refsource_confirm
http://www.novell.com/documentation/nedse41/readmesp2.txt
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/24493
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018258
Scores
EPSS
0.0311
EPSS Percentile
87.0%
Details
Status
published
Products (1)
novell/extend_director
4.1
Published
Jun 18, 2007
Tracked Since
Feb 18, 2026