CVE		CVE-2007-1588
Статус		Candidate
Описание		server.cpp in MyServer 0.8.5 calls Process::setuid before calling Process::setgid and thus does not properly drop privileges, which might allow remote attackers to execute CGI programs with unintended privileges.
Важность		High
CVSS score		7
CVSS vector		(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Phase		Assigned (21.03.2007)
NVD:		http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1588
References		CONFIRM : http://www.myserverproject.net/news.php
		MLIST : [myserver-commit] 20070210 SF.net SVN: myserver: [2183] trunk/myserver/source/server.cpp
SecurityVulns:		Повышение привилегий в MyServer (privilege escalation)