Back to search
CVE-2007-5360
Published: Jan 8, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in OpenPegasus Management server, when compiled to use PAM and with PEGASUS_USE_PAM_STANDALONE_PROC defined, as used in VMWare ESX Server 3.0.1 and 3.0.2, might allow remote attackers to execute arbitrary code via vectors related to PAM authentication, a different vulnerability than CVE-2008-0003.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
3538
third-party-advisory
x_refsource_SREASON
openpegasus-pam-bo(39524)
vdb-entry
x_refsource_XF
SUSE-SR:2008:002
vendor-advisory
x_refsource_SUSE
29986
third-party-advisory
x_refsource_SECUNIA
HPSBMA02331
vendor-advisory
x_refsource_HP
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2007-5360
x_refsource_MISC
20080108 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages
mailing-list
x_refsource_BUGTRAQ
20080115 vuldb confusion between OpenPegasus issues
mailing-list
x_refsource_VIM
ADV-2008-0063
vdb-entry
x_refsource_VUPEN
28368
third-party-advisory
x_refsource_SECUNIA
ADV-2008-1391
vdb-entry
x_refsource_VUPEN
SSRT080000
vendor-advisory
x_refsource_HP
28636
third-party-advisory
x_refsource_SECUNIA
28358
third-party-advisory
x_refsource_SECUNIA
http://www.vmware.com/security/advisories/VMSA-2008-0001.html
x_refsource_CONFIRM
ADV-2008-0064
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now