9.3

CVE-2007-2957

Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.

Data is provided by the National Vulnerability Database (NVD)
McafeeE-business Server Editionaix Version <= 8.1.1
McafeeE-business Server Editionhpux Version <= 8.1.1
McafeeE-business Server Editionlinux Version <= 8.1.1
McafeeE-business Server Editionsolaris Version <= 8.5.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 8.12% 0.913
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C