9.3
CVE-2007-3302
- EPSS 10.79%
- Veröffentlicht 26.07.2007 00:30:00
- Zuletzt bearbeitet 16.06.2026 22:41:27
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The CallCode ActiveX control in caller.dll 3.0 before 20070713, and 3.0 SP1 before 3.0.5.81, in CA (formerly Computer Associates) eTrust Intrusion Detection allows remote attackers to load arbitrary DLLs on a client system, and execute code from these DLLs, via unspecified "scriptable functions."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Broadcom ≫ Etrust Intrusion Detection Version3.0
Ca ≫ Etrust Intrusion Detection Version3.0 Updatesp1
Ca ≫ Etrust Intrusion Detection Version3.05.81
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 10.79% | 0.953 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=568
http://secunia.com/advisories/26134
http://supportconnectw.ca.com/public/etrust/etrust_intrusion/infodocs/eid-callervilnsecnot.asp
http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149811
http://www.securityfocus.com/archive/1/474599/100/0/threaded
http://www.securityfocus.com/bid/25050
http://www.securitytracker.com/id?1018447
http://www.vupen.com/english/advisories/2007/2640
https://exchange.xforce.ibmcloud.com/vulnerabilities/35565