10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.827 High
EPSS
Percentile
98.4%
Multiple buffer overflows in the CentennialIPTransferServer service (XFERWAN.EXE), as used by (1) Centennial Discovery 2006 Feature Pack 1, (2) Numara Asset Manager 8.0, and (3) Symantec Discovery 6.5, allow remote attackers to execute arbitrary code via long strings in a crafted TCP packet.
osvdb.org/35076
secunia.com/advisories/24090
secunia.com/advisories/24281
secunia.com/advisories/24329
secunia.com/secunia_research/2007-41/advisory/
secunia.com/secunia_research/2007-42/advisory/
secunia.com/secunia_research/2007-43/advisory/
www.securityfocus.com/bid/24002
www.securitytracker.com/id?1018072
www.vupen.com/english/advisories/2007/1832
www.vupen.com/english/advisories/2007/1833
www.vupen.com/english/advisories/2007/1834
exchange.xforce.ibmcloud.com/vulnerabilities/34313