CVE-2007-2229
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-2229
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Microsoft Windows Vista uses insecure default permissions for unspecified "local user information data stores" in the registry and the file system, which allows local users to obtain sensitive information such as administrative passwords, aka "Permissive User Information Store ACLs Information Disclosure Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Vista不安全存储用户信息漏洞(MS07-032)
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows Vista是是美国微软(Microsoft)公司发布的一套操作系统。 Windows Vista以不安全的访问权限存储用户信息,本地攻击者可能利用此漏洞提升自己的权限。 Windows Vista将某些用户信息数据以不安全的权限储存到了注册表和本地文件系统中,可能允许非特权用户访问本地用户信息存储,包括注册表和本地文件系统中包含的管理密码。该漏洞可能允许本地攻击者访问用户帐户数据,然后使用该数据来尝试获得对受影响系统的完全访问权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-2229
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-2229
Please Login to view more intelligence information
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-032vendor-advisoryx_refsource_MS
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1529vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2007-2229
Same Patch Batch · n/a · 2007-06-12 · 37 CVEs total
| CVE-2007-3196 | vBSupport Integrated Ticket System vBSupport.PHP SQL注入漏洞 | |
| CVE-2007-3188 | GeometriX Download Portal Down_Indir.ASP SQL注入漏洞 | |
| CVE-2007-3189 | Just For Fun 网络管理和检测系统 跨站脚本攻击漏洞 | |
| CVE-2007-3190 | Just For Fun 网络管理和检测系统 多个远程漏洞 | |
| CVE-2007-3191 | Just For Fun 网络管理和检测系统 多个远程漏洞 | |
| CVE-2007-3192 | Just For Fun Network Management System修改配置漏洞 | |
| CVE-2007-3193 | PhpWiki lib/WikiUser/LDAP.php 绕过身份认证漏洞 | |
| CVE-2007-3194 | myBloggie PHP远程文件包含漏洞 | |
| CVE-2007-3195 | ERFAN WIKI Index.PHP 跨站脚本攻击漏洞 | |
| CVE-2007-3181 | Firebird SQL fbserver connect请求远程缓冲区溢出漏洞 | |
| CVE-2007-3197 | vBSupport SQL注入漏洞 | |
| CVE-2007-3198 | Maran Blog Comments.PHP 跨站脚本攻击漏洞 | |
| CVE-2007-3199 | Link Request Contact Form任意文件上传漏洞 | |
| CVE-2007-3200 | Novell NetWare Modular Authentication Service 本地信息泄露漏洞 | |
| CVE-2007-3201 | WindowsPT用户ID密钥欺骗漏洞 | |
| CVE-2007-3202 | WebWiz Rich Text Editor Topics Page HTML注入漏洞 | |
| CVE-2007-3203 | 602Pro Lan Suite 2003邮件消息远程栈溢出漏洞 | |
| CVE-2007-3204 | Just For Fun Network Management System (JFFNMS) SQL注入漏洞 | |
| CVE-2007-3027 | Microsoft IE语言包安装远程代码执行漏洞(MS07-033) | |
| CVE-2007-2796 | Arris Cadant C3 CTMS畸形IP报文远程拒绝服务漏洞 |
Showing top 20 of 37 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2007-2229
No comments yet