PT-2007-2600 · Numara+2 · Numara Asset Manager+2
Published
2007-05-16
·
Updated
2017-07-29
·
CVE-2007-1173
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Centennial Discovery 2006 Feature Pack 1
Numara Asset Manager 8.0
Symantec Discovery 6.5
Description
The issue is related to multiple buffer overflows in the CentennialIPTransferServer service, which can be exploited by remote attackers to execute arbitrary code. This is achieved by sending crafted TCP packets containing long strings.
Recommendations
For Centennial Discovery 2006 Feature Pack 1, update to a version that addresses the buffer overflow issue in the CentennialIPTransferServer service.
For Numara Asset Manager 8.0, update to a version that addresses the buffer overflow issue in the CentennialIPTransferServer service.
For Symantec Discovery 6.5, update to a version that addresses the buffer overflow issue in the CentennialIPTransferServer service.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Centennial Discovery
Numara Asset Manager
Symantec Discovery