Unrated severityNVD Advisory· Published Sep 4, 2007· Updated Apr 23, 2026

CVE-2007-4656

Description

backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtain sensitive information by listing the process and its arguments, a different vulnerability than CVE-2007-2766.

Affected products

Backup Manager/Backup Manager
cpe:2.3:a:backup_manager:backup_manager:*:*:*:*:*:*:*:*
Range: <=0.6.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/26657nvdPatchVendor Advisory
www2.backup-manager.org/Release063nvdPatch
bugs.debian.org/cgi-bin/bugreport.cginvd
bugzilla.backup-manager.org/cgi-bin/show_bug.cginvd
osvdb.org/37444nvd
secunia.com/advisories/29377nvd
www.debian.org/security/2008/dsa-1518nvd
www.securityfocus.com/bid/25503nvd
www.securitytracker.com/idnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000