CVE-2007-4656

N/A Unknown
Published: September 04, 2007 Modified: April 23, 2026
View on NVD

Description

backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtain sensitive information by listing the process and its arguments, a different vulnerability than CVE-2007-2766.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=439392
Source: cve@mitre.org
http://bugzilla.backup-manager.org/cgi-bin/show_bug.cgi?id=173
Source: cve@mitre.org
http://osvdb.org/37444
Source: cve@mitre.org
http://secunia.com/advisories/26657
Source: cve@mitre.org
Patch Vendor Advisory
http://secunia.com/advisories/29377
Source: cve@mitre.org
http://www.debian.org/security/2008/dsa-1518
Source: cve@mitre.org
http://www.securityfocus.com/bid/25503
Source: cve@mitre.org
http://www.securitytracker.com/id?1018639
Source: cve@mitre.org
http://www2.backup-manager.org/Release063
Source: cve@mitre.org
Patch
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=439392
Source: af854a3a-2127-422b-91ae-364da2661108
http://bugzilla.backup-manager.org/cgi-bin/show_bug.cgi?id=173
Source: af854a3a-2127-422b-91ae-364da2661108
http://osvdb.org/37444
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/26657
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://secunia.com/advisories/29377
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.debian.org/security/2008/dsa-1518
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/25503
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1018639
Source: af854a3a-2127-422b-91ae-364da2661108
http://www2.backup-manager.org/Release063
Source: af854a3a-2127-422b-91ae-364da2661108
Patch

18 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.4%
28th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-200 CWE-255 CWE-310

Affected Vendors

backup_manager

Related CVEs

CVE-2026-40941 N/A
CVE-2026-40084 6.5
CVE-2026-40083 7.2
CVE-2026-40082 5.4
CVE-2026-40080 6.1