CVE-2007-1173

Опубликовано: 16 мая 2007

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

Multiple buffer overflows in the CentennialIPTransferServer service (XFERWAN.EXE), as used by (1) Centennial Discovery 2006 Feature Pack 1, (2) Numara Asset Manager 8.0, and (3) Symantec Discovery 6.5, allow remote attackers to execute arbitrary code via long strings in a crafted TCP packet.

Ссылки

http://osvdb.org/35076
http://secunia.com/advisories/24090
Vendor Advisory
http://secunia.com/advisories/24281
Vendor Advisory
http://secunia.com/advisories/24329
Vendor Advisory
http://secunia.com/secunia_research/2007-41/advisory/
Vendor Advisory
http://secunia.com/secunia_research/2007-42/advisory/
Vendor Advisory
http://secunia.com/secunia_research/2007-43/advisory/
Vendor Advisory
http://www.securityfocus.com/bid/24002
http://www.securitytracker.com/id?1018072
http://www.vupen.com/english/advisories/2007/1832
http://www.vupen.com/english/advisories/2007/1833
http://www.vupen.com/english/advisories/2007/1834
https://exchange.xforce.ibmcloud.com/vulnerabilities/34313
http://osvdb.org/35076
http://secunia.com/advisories/24090
Vendor Advisory
http://secunia.com/advisories/24281
Vendor Advisory
http://secunia.com/advisories/24329
Vendor Advisory
http://secunia.com/secunia_research/2007-41/advisory/
Vendor Advisory
http://secunia.com/secunia_research/2007-42/advisory/
Vendor Advisory
http://secunia.com/secunia_research/2007-43/advisory/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:centennial:discovery:2006_featurepack1:*:*:*:*:*:*:*

cpe:2.3:a:numara:asset_manager:8.0:*:*:*:*:*:*:*

cpe:2.3:a:symantec:discovery:6.5:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.23215

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-r6xh-7cgr-qwg3

github

почти 4 года назад