CVE-2007-2957 - Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, H

CVE-2007-2957

Summary

Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.

References

Vulnerable Configurations

cpe:2.3:a:mcafee:e-business_server:*:*:aix:*:*:*:*:*
cpe:2.3:a:mcafee:e-business_server:*:*:aix:*:*:*:*:*
cpe:2.3:a:mcafee:e-business_server:*:*:hpux:*:*:*:*:*
cpe:2.3:a:mcafee:e-business_server:*:*:hpux:*:*:*:*:*
cpe:2.3:a:mcafee:e-business_server:*:*:linux:*:*:*:*:*
cpe:2.3:a:mcafee:e-business_server:*:*:linux:*:*:*:*:*
cpe:2.3:a:mcafee:e-business_server:*:*:solaris:*:*:*:*:*
cpe:2.3:a:mcafee:e-business_server:*:*:solaris:*:*:*:*:*

CVSS

Base:	9.3 (as of 29-07-2017 - 01:31)
Impact:
Exploitability:

CWE

CWE-189

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

refmap via4

bid	26269
confirm	https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=614035
misc	http://secunia.com/secunia_research/2007-69/advisory/
sectrack	1018878
secunia	26372
vupen	ADV-2007-3663
xf	mcafee-ebusiness-auth-packet-bo(38175)

Last major update

29-07-2017 - 01:31

Published

31-10-2007 - 22:46

Last modified

29-07-2017 - 01:31