CVE-2007-1437

EPSS 0.84%

Published: 3/13/2007Modified: 4/28/2026

Description

Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns from execution.

Affected packages (1)

Debian/sql-ledgerfrom 0, < 2.8.14-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-1437