10

CVE-2007-2137

EPSS 27.54%
Veröffentlicht 22.04.2007 19:19:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Heap-based buffer overflow in kde.dll in IBM Tivoli Monitoring Express 6.1.0 before Fix Pack 2, as used in Tivoli Universal Agent, Windows OS Monitoring agent, and Enterprise Portal Server, allows remote attackers to execute arbitrary code by sending a long string to a certain TCP port.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Tivoli Monitoring Express Version6.1.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	27.54%	0.96

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://secunia.com/advisories/24938

http://securityreason.com/securityalert/2597

http://www-1.ibm.com/support/docview.wss?uid=swg24012341

Patch

http://www.securityfocus.com/archive/1/466216/100/0/threaded

http://www.securityfocus.com/bid/23558

Patch

http://www.securitytracker.com/id?1017933

http://www.vupen.com/english/advisories/2007/1456

http://www.zerodayinitiative.com/advisories/ZDI-07-018.html

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/33746

https://nvd.nist.gov/vuln/detail/CVE-2007-2137

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-2137

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-2137

EUVD