Lucene search

[email protected]CVE-2007-1993

HistoryApr 12, 2007 - 10:19 a.m.

CVE-2007-1993

2007-04-1210:19:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2007-1993

buffer overflow

pfs_mountd.rpc

hp-ux

remote code execution

security vulnerability

7.7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.052 Low

EPSS

Percentile

92.9%

JSON

Buffer overflow in the pfs_mountd.rpc RPC daemon in the Portable File System (PFS) in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to execute arbitrary code by sending “a call to procedure 5, followed by a crafted payload to procedure 2.”

CPENameOperatorVersion
hp:hp-uxhp hp-uxeqb.11.23
hp:hp-uxhp hp-uxeqb.11.11
hp:hp-uxhp hp-uxeqb.11.00

CPE	Name	Operator	Version
hp:hp-ux	hp hp-ux	eq	b.11.23
hp:hp-ux	hp hp-ux	eq	b.11.11
hp:hp-ux	hp hp-ux	eq	b.11.00

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00913684

labs.idefense.com/intelligence/vulnerabilities/display.php?id=512

secunia.com/advisories/24855

www.securityfocus.com/bid/23401

www.securitytracker.com/id?1017893

www.vupen.com/english/advisories/2007/1343

exchange.xforce.ibmcloud.com/vulnerabilities/33567

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5751

7.7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.052 Low

EPSS

Percentile

92.9%

JSON

Related for CVE-2007-1993

openvas2 nessus6 securityvulns1 prion1