CVE-2007-0625 Information

Description

nxconfigure.sh in NoMachine NX Server before 2.1.0-18 does not validate the invoking user which allows local users to modify server configuration keys in /usr/NX/etc/server.cfg resulting in an unspecified denial of service.

Reference

http://osvdb.org/33009 http://secunia.com/advisories/23993 http://www.nomachine.com/news_read.php?idnews=190 http://www.nomachine.com/tr/view.php?id=TR01E01622 http://www.securityfocus.com/bid/22308 http://www.vupen.com/english/advisories/2007/0413 https://exchange.xforce.ibmcloud.com/vulnerabilities/31941