EUVD-2007-2942

Malware in sbrugna...

Design/Logic Flaw

Centennial Discovery 2006 Feature Pack 1, which is used by 1 Numara Asset Manager 8.0 and 2 Symantec Discovery 6.5, uses insecure permissions on certain directories, which allows local users to gain privileges...

CVE-2007-2950

Centennial Discovery 2006 Feature Pack 1, which is used by 1 Numara Asset Manager 8.0 and 2 Symantec Discovery 6.5, uses insecure permissions on certain directories, which allows local users to gain privileges...

CVE-2007-2950

CVE-2007-2950 involves Centennial Discovery 2006 Feature Pack 1 (used by Numara Asset Manager 8.0 and Symantec Discovery 6.5) where insecure default directory/file permissions enable local non-privileged users to gain privileges. The Symantec advisory notes the vulnerability arises from improper ...

CVE-2007-2950

Centennial Discovery 2006 Feature Pack 1, which is used by 1 Numara Asset Manager 8.0 and 2 Symantec Discovery 6.5, uses insecure permissions on certain directories, which allows local users to gain privileges...

Centennial IP Transfer Agent Detection

The remote service appears to be an IP Transfer Agent used by Centennial Discovery, or one of its OEM versions. Discovery is an enterprise tool for network auditing and monitoring, and the IP Transfer Agent XFERWAN offers a way for client agents and the application's Control Center to communicate...

Buffer overflow

Multiple buffer overflows in the CentennialIPTransferServer service XFERWAN.EXE, as used by 1 Centennial Discovery 2006 Feature Pack 1, 2 Numara Asset Manager 8.0, and 3 Symantec Discovery 6.5, allow remote attackers to execute arbitrary code via long strings in a crafted TCP packet...

CVE-2007-1173

CVE-2007-1173 describes a buffer overflow flaw in the CentennialIPTransferServer (XFERWAN.EXE) used by Centennial Discovery 2006 Feature Pack 1, Numara Asset Manager 8.0, and Symantec Discovery 6.5. The vulnerability arises from processing long strings in crafted TCP packets, enabling remote arbi...