5 matches found
CVE-2007-2136
Stack-based buffer overflow in bgssdservice.exe in BMC Patrol PerformAgent allows remote attackers to execute arbitrary code by connecting to TCP port 10128 and sending certain XDR data, which is not properly parsed...
CVE-2007-2136
CVE-2007-2136 affects BMC Patrol PerformAgent: a stack-based buffer overflow in the bgs_sdservice.exe component, exploitable by sending crafted XDR data to TCP port 10128. The root cause is improper parsing of XDR data, allowing a remote attacker to corrupt the stack and potentially execute arbit...
BMC Patrol BGS_SDservice.EXE内存破坏漏洞
BMC Patrol是一款用于提供数据库系统监控的解决方案。 BMC Patrol PerformAgent服务存在内存破坏问题,远程攻击者可以利用漏洞以应用程序权限执行任意指令。 bgssdservice.exe默认监听TCP 10128端口,由于不正确解析发送给此服务的XDR数据,攻击者可以操作进行内存拷贝操作的参数,而导致堆栈破坏,包括SEH指针,可造成任意指令执行。 BMC Software Patrol 3.5 BMC Software Patrol 3.4.11 BMC Software Patrol 3.3 BMC Software Patrol 3.2.7 BMC...
BMC Patrol PerformAgent memory corruption
Buffer overflow on bgssdservice.exe TCP/10128 XDR data parsing...
BMC Patrol PerformAgent bgs_sdservice Memory Corruption Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of BMC Patrol. User interaction is not required to exploit this vulnerability. The specific flaw exists due to improper parsing of XDR data sent to the bgssdservice.exe process listening by default on TCP po...