Lucene search

[email protected]CVE-2007-2602

HistoryMay 11, 2007 - 10:19 a.m.

CVE-2007-2602

2007-05-1110:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2602

buffer overflow

mibextra.exe

ipswitch whatsup gold 11

denial of service

arbitrary code execution

nvd

8.6 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.005 Low

EPSS

Percentile

77.1%

JSON

Buffer overflow in MIBEXTRA.EXE in Ipswitch WhatsUp Gold 11 allows attackers to cause a denial of service (application crash) or execute arbitrary code via a long MIB filename argument. NOTE: If there is not a common scenario under which MIBEXTRA.EXE is called with attacker-controlled command line arguments, then perhaps this issue should not be included in CVE.

CPENameOperatorVersion
ipswitch:whatsup_goldipswitch whatsup goldeq11

CPE	Name	Operator	Version
ipswitch:whatsup_gold	ipswitch whatsup gold	eq	11

References

osvdb.org/36217

securityreason.com/securityalert/2708

www.securityfocus.com/archive/1/468070/100/0/threaded

8.6 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.005 Low

EPSS

Percentile

77.1%

JSON

Related for CVE-2007-2602

prion1