MoveSortedContentAction in C1 Financial Services Contelligent 9.1.4 does not check "the additional environment security configuration," which allows remote attackers with write permissions to reorder components.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-03-03T20:00:00
Updated: 2017-07-28T12:57:01
Reserved: 2007-03-03T00:00:00
Link: CVE-2007-1249
JSON object: View
NVD Information
Status : Modified
Published: 2007-03-03T20:19:00.000
Modified: 2017-07-29T01:30:41.860
Link: CVE-2007-1249
JSON object: View
Redhat Information
No data.
CWE