PT-2007-2600 · Numara+2 · Numara Asset Manager+2

Publicado

2007-05-16

Atualizado

2017-07-29

CVE-2007-1173

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Centennial Discovery 2006 Feature Pack 1 Numara Asset Manager 8.0 Symantec Discovery 6.5

Description The issue is related to multiple buffer overflows in the CentennialIPTransferServer service, which can be exploited by remote attackers to execute arbitrary code. This is achieved by sending crafted TCP packets containing long strings.

Recommendations For Centennial Discovery 2006 Feature Pack 1, update to a version that addresses the buffer overflow issue in the CentennialIPTransferServer service. For Numara Asset Manager 8.0, update to a version that addresses the buffer overflow issue in the CentennialIPTransferServer service. For Symantec Discovery 6.5, update to a version that addresses the buffer overflow issue in the CentennialIPTransferServer service.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-1173

Produtos afetados

Centennial Discovery

Numara Asset Manager

Symantec Discovery

PT-2007-2600 · Numara+2 · Numara Asset Manager+2

CVE-2007-1173

Identificadores relacionados

Produtos afetados

Referências · 14