Local User Vulnerability in NoMachine NX Server Configuration
CVE-2007-0625

Currently unrated

Key Information:

Vendor

Nomachine

Status
Nx Server
Vendor
CVE Published:
31 January 2007

What is CVE-2007-0625?

The nxconfigure.sh script in NoMachine NX Server prior to version 2.1.0-18 fails to properly validate the invoking user. This oversight permits local users to modify critical server configuration files located in /usr/NX/etc/server.cfg. Such unvalidated access may allow these users to alter configurations, potentially leading to a denial of service condition that disrupts normal server operations. Mitigation strategies include ensuring only authorized users have access to the nxconfigure.sh script and that secure practices for user authentication are adhered to.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.nomachine.com/tr/view.php?id=TR01E01622
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/31941
vdb-entryx_refsource_XF
http://www.vupen.com/english/advisories/2007/0413
vdb-entryx_refsource_VUPEN

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.