CVE-2007-1972

Name of the Vulnerable Software and Affected Versions BMC Performance Manager (affected versions not specified)

Description The issue concerns a lack of authentication requirement for requests to modify configuration files. This could potentially allow remote attackers to execute arbitrary code by sending a request on TCP port 3181 to modify specific SNMP parameters, such as masterAgentName and masterAgentStartLine. However, the vendor disputes the existence of this issue, stating it does not occur when the system is properly configured.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.