Lucene search

PRIOn knowledge basePRION:CVE-2007-3618

HistoryAug 21, 2007 - 9:17 p.m.

Stack overflow

2007-08-2121:17:00

PRIOn knowledge base

www.prio-n.com

8.3 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.863 High

EPSS

Percentile

98.5%

JSON

Stack-based buffer overflow in the NetWorker Remote Exec Service (nsrexecd.exe) in EMC Software NetWorker 7.x.x allows remote attackers to execute arbitrary code via a (1) poll or (2) kill request with a “long invalid subcmd.”

CPENameOperatorVersion
legato_networkereq7.0
legato_networkereq7.2
legato_networkereq7.3.2
legato_networkereq7.1.3
legato_networkereq7.2.1

Name	Operator	Version
legato_networker	eq	7.0
legato_networker	eq	7.2
legato_networker	eq	7.3.2
legato_networker	eq	7.1.3
legato_networker	eq	7.2.1

References

osvdb.org/39744

secunia.com/advisories/26517

securityreason.com/securityalert/3043

www.securityfocus.com/archive/1/477172/100/0/threaded

www.securityfocus.com/bid/25375

www.securitytracker.com/id?1018590

www.vupen.com/english/advisories/2007/2931

www.zerodayinitiative.com/advisories/ZDI-07-049.html

exchange.xforce.ibmcloud.com/vulnerabilities/36123

8.3 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.863 High

EPSS

Percentile

98.5%

JSON

Related for PRION:CVE-2007-3618