CVE-2007-3945

N/A Unknown
Published: July 23, 2007 Modified: April 23, 2026
View on NVD

Description

Rule Set Based Access Control (RSBAC) before 1.3.5 does not properly use the Linux Kernel Crypto API for the Linux kernel 2.6.x, which allows context-dependent attackers to bypass authentication controls via unspecified vectors, possibly involving User Management password hashing and unchecked function return codes.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://download.rsbac.org/code/1.3.5/changes-1.3.5.txt
Source: cve@mitre.org
Vendor Advisory
http://secunia.com/advisories/26147
Source: cve@mitre.org
Broken Link
http://securityreason.com/securityalert/2911
Source: cve@mitre.org
Third Party Advisory
http://www.securityfocus.com/archive/1/474161/100/0/threaded
Source: cve@mitre.org
Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/25001
Source: cve@mitre.org
Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2007/2610
Source: cve@mitre.org
URL Repurposed
http://download.rsbac.org/code/1.3.5/changes-1.3.5.txt
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://secunia.com/advisories/26147
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://securityreason.com/securityalert/2911
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.securityfocus.com/archive/1/474161/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/25001
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2007/2610
Source: af854a3a-2127-422b-91ae-364da2661108
URL Repurposed

12 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.8%
75th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

rsbac linux