QwikSec

Security Database

CVE

CWE

Training

CVE-2007-2957

Published: Oct 31, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=614035

x_refsource_CONFIRM

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

mcafee-ebusiness-auth-packet-bo(38175)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_SECTRACK

http://secunia.com/secunia_research/2007-69/advisory/

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.