Описание
Heap-based buffer overflow in _mprosrv.exe in Progress Software Progress 9.1E and OpenEdge 10.1x, as used by the RSA Authentication Manager 6.0 and 6.1, SecurID Appliance 2.0, ACE/Server 5.2, and possibly other products, allows remote attackers to execute arbitrary code via crafted packets. NOTE: this issue might overlap CVE-2007-3491.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:h:rsa:securid:2.0:*:*:*:*:*:*:*
Одно из
cpe:2.3:a:progress:openedge:10.1a:*:*:*:*:*:*:*
cpe:2.3:a:progress:openedge:10.1b:*:*:*:*:*:*:*
cpe:2.3:a:progress:progress:9.1e:*:*:*:*:*:*:*
cpe:2.3:a:rsa:ace_server:5.2:*:*:*:*:*:*:*
EPSS
Процентиль: 83%
0.01997
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Heap-based buffer overflow in _mprosrv.exe in Progress Software Progress 9.1E and OpenEdge 10.1x, as used by the RSA Authentication Manager 6.0 and 6.1, SecurID Appliance 2.0, ACE/Server 5.2, and possibly other products, allows remote attackers to execute arbitrary code via crafted packets. NOTE: this issue might overlap CVE-2007-3491.
EPSS
Процентиль: 83%
0.01997
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other