CVE-2007-4349
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
93.9%
The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | openview_performance_agent | c.04.60 | cpe:2.3:a:hp:openview_performance_agent:c.04.60:*:*:*:*:*:*:* |
| hp | openview_performance_agent | c.04.61 | cpe:2.3:a:hp:openview_performance_agent:c.04.61:*:*:*:*:*:*:* |
| hp | openview_reporter | 3.70 | cpe:2.3:a:hp:openview_reporter:3.70:*:*:*:*:*:*:* |
| hp | performance_agent | 4.70 | cpe:2.3:a:hp:performance_agent:4.70:*:*:*:*:*:*:* |
| hp | reporter | 3.8 | cpe:2.3:a:hp:reporter:3.8:*:*:*:*:*:*:* |
References
marc.info/?l=bugtraq&m=122876677518654&w=2
marc.info/?l=bugtraq&m=122876827120961&w=2
secunia.com/advisories/27054
secunia.com/secunia_research/2007-83/
securityreason.com/securityalert/4501
www.securityfocus.com/archive/1/497648/100/0/threaded
www.securityfocus.com/bid/31860
www.securitytracker.com/id?1021092
www.vupen.com/english/advisories/2008/2888
exchange.xforce.ibmcloud.com/vulnerabilities/46028
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
93.9%