PT-2007-2109 · Microworld Technologies · Escan

Published

2007-05-02

Updated

2017-07-29

CVE-2007-0655

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions MicroWorld Technologies eScan version 8.0.671.1

Description The issue allows remote or local attackers to gain privileges and execute arbitrary commands by connecting directly to TCP port 2222. This is due to a problem in the MicroWorld Agent service (MWAGENT.EXE).

Recommendations For version 8.0.671.1, consider restricting access to TCP port 2222 to minimize the risk of exploitation. As a temporary workaround, limit the functionality of the MicroWorld Agent service until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0655

Affected Products

Escan

PT-2007-2109 · Microworld Technologies · Escan

CVE-2007-0655

Related Identifiers

Affected Products

References · 8