Lucene search

[email protected]CVE-2007-3491

HistoryJun 29, 2007 - 6:30 p.m.

CVE-2007-3491

2007-06-2918:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

buffer overflow

progress software

nvd

security

openedge

tcp/ip

vulnerability

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.027 Low

EPSS

Percentile

90.3%

JSON

Buffer overflow in _mprosrv in Progress Software OpenEdge before 9.1E0422, and 10.x before 10.1B01, allows remote attackers to have an unknown impact via a malformed TCP/IP message.

CPENameOperatorVersion
progress:openedgeprogress openedgeeq10.1b
progress:openedgeprogress openedgeeq9.1e
progress:openedgeprogress openedgeeq10.1a

CPE	Name	Operator	Version
progress:openedge	progress openedge	eq	10.1b
progress:openedge	progress openedge	eq	9.1e
progress:openedge	progress openedge	eq	10.1a

References

osvdb.org/37747

secunia.com/advisories/25865

securityreason.com/securityalert/2851

www.psdn.com/library/servlet/KbServlet/download/2629-102-4821/README_101B_01.pdf

www.securityfocus.com/archive/1/472349/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/35104

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.027 Low

EPSS

Percentile

90.3%

JSON

Related for CVE-2007-3491

prion2 cve1