CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2975

HIGH
7.5
CVSS Severity Score
EPSS Score0.1940%
EPSS Percentile34.49th
PublishedJun 1, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

The admin console in Ignite Realtime Openfire 3.3.0 and earlier (formerly Wildfire) does not properly specify a filter mapping in web.xml, which allows remote attackers to gain privileges and execute arbitrary code by accessing functionality that is exposed through DWR, as demonstrated using the downloader.

Affected Platforms (CPE)

πŸ“¦
Ignite Realtime

Openfire

<= 3.3.0
πŸ“¦
Ignite Realtime

Openfire

= 2.6.0
πŸ“¦
Ignite Realtime

Openfire

= 2.6.1
πŸ“¦
Ignite Realtime

Openfire

= 2.6.2
πŸ“¦
Ignite Realtime

Openfire

= 3.0.0
πŸ“¦
Ignite Realtime

Openfire

= 3.0.1
πŸ“¦
Ignite Realtime

Openfire

= 3.1.0
πŸ“¦
Ignite Realtime

Openfire

= 3.1.1
πŸ“¦
Ignite Realtime

Openfire

= 3.2.0
πŸ“¦
Ignite Realtime

Openfire

= 3.2.1
πŸ“¦
Ignite Realtime

Openfire

= 3.2.2
πŸ“¦
Ignite Realtime

Openfire

= 3.2.3
πŸ“¦
Ignite Realtime

Openfire

= 3.2.4

References & Advisories

πŸ”— http://blogs.reucon.com/srt/2007/05/11/openfire_3_3_1_fixes_critical_security_issue.html
πŸ”— http://secunia.com/advisories/25427
πŸ”— http://www.igniterealtime.org/issues/browse/JM-1049
πŸ”— http://www.osvdb.org/36713
πŸ”— http://www.securityfocus.com/bid/24205
πŸ”— http://blogs.reucon.com/srt/2007/05/11/openfire_3_3_1_fixes_critical_security_issue.html
πŸ”— http://secunia.com/advisories/25427
πŸ”— http://www.igniterealtime.org/issues/browse/JM-1049

Related Vulnerabilities

CVE-2019-183949.8

A Server Side Request Forgery (SSRF) vulnerability in FaviconServlet.java in Ignite Realtime Openfire through 4.4.2 allows attacke...

CVE-2017-28158.1

An exploitable XML entity injection vulnerability exists in OpenFire User Import Export Plugin 2.6.0. A specially crafted web requ...

CVE-2014-27417.8

nio/XMLLightweightParser.java in Ignite Realtime Openfire before 3.9.2 does not properly restrict the processing of compressed XML...

CVE-2008-65097.5

SQL injection vulnerability in CallLogDAO in SIP Plugin in Openfire 3.6.0a and earlier allows remote attackers to execute arbitrar...