ubuntu · CVE-2007-2849

Quick triage

Priority: medium Published: 2007-05-24 18:30:00 UTC Updated: 2025-07-17 16:41:30 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2007-2849 medium priority: Ubuntu including 1 source packages (knowledgetree), 9 status rows across 9 suites (dapper, edgy, feisty, gutsy, hardy, intrepid, jaunty, karmic, upstream): DNE 4, ignored 4, needs-triage 1.

Description:

KnowledgeTree Document Management (aka KnowledgeTree Open Source) before STABLE 3.3.7 does not require a password for an unregistered user, when the user exists in Active Directory, which allows remote attackers to log onto KTDMS without the intended authorization check.

cvelogic Threat Intelligence