CVE-2007-2602

Name of the Vulnerable Software and Affected Versions Ipswitch WhatsUp Gold version 11

Description The issue allows attackers to cause a denial of service or execute arbitrary code via a long MIB filename argument in MIBEXTRA.EXE. This can happen when MIBEXTRA.EXE is called with attacker-controlled command line arguments.

Recommendations For Ipswitch WhatsUp Gold version 11, consider restricting access to MIBEXTRA.EXE to minimize the risk of exploitation. As a temporary workaround, avoid using long MIB filename arguments until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.