| ID |
CVE-2007-2137
|
| Summary |
Heap-based buffer overflow in kde.dll in IBM Tivoli Monitoring Express 6.1.0 before Fix Pack 2, as used in Tivoli Universal Agent, Windows OS Monitoring agent, and Enterprise Portal Server, allows remote attackers to execute arbitrary code by sending a long string to a certain TCP port. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 10.0 (as of 16-10-2018 - 16:42) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| COMPLETE |
COMPLETE |
COMPLETE |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
| refmap
via4
|
| bid | 23558 | | bugtraq | 20070418 ZDI-07-018: IBM Tivoli Monitoring Express Universal Agent Heap Overflow Vunlerability | | misc | | | sectrack | 1017933 | | secunia | 24938 | | sreason | 2597 | | vupen | ADV-2007-1456 | | xf | tivoli-monitoring-multiple-bo(33746) |
|
| Last major update |
16-10-2018 - 16:42 |
| Published |
22-04-2007 - 19:19 |
| Last modified |
16-10-2018 - 16:42 |
