9.3
CVE-2007-2957
- EPSS 6.22%
- Veröffentlicht 31.10.2007 22:46:00
- Zuletzt bearbeitet 16.06.2026 22:40:46
- Quelle PSIRT-CNA@flexerasoftware.com
- CVE-Watchlists
- Unerledigt
Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mcafee ≫ E-business Server Editionaix Version <= 8.1.1
Mcafee ≫ E-business Server Editionhpux Version <= 8.1.1
Mcafee ≫ E-business Server Editionlinux Version <= 8.1.1
Mcafee ≫ E-business Server Editionsolaris Version <= 8.5.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.22% | 0.926 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/26372
http://secunia.com/secunia_research/2007-69/advisory/
http://securitytracker.com/id?1018878
http://www.securityfocus.com/bid/26269
http://www.vupen.com/english/advisories/2007/3663
https://exchange.xforce.ibmcloud.com/vulnerabilities/38175
https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=614035