Published: 13/01/2007 Updated: 29/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The DataCollector service in EIQ Networks Network Security Analyzer allows remote malicious users to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) &LOGPATH& (6) &FWADELTA& (7) &FWALOG& (8) &SETSYNCHRONOUS& (9) &SETPRGFILE&, or (10) &SETREPLYPORT& string to TCP port 10618, which triggers a NULL pointer dereference.

Vulnerable Product	Search on Vulmon	Subscribe to Product
eiqnetworks enterprise security analyzer 2.1
eiqnetworks enterprise security analyzer 2.5
eiqnetworks enterprise security analyzer 2.0

#!c:\python\pythonexe # uncomment whichever function youd like theyll all crash in a similar way # Any of the following "function names" will cause the service to throw an access violation # while dereferencing the return value from a call to FindIndex # ( msdn2microsoftcom/de-de/library/a93550bb(VS80)aspx): # Ethan Hunt <m34r\ ...

NVD-CWE-Other http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0209.html http://www.securityfocus.com/bid/21994 http://secunia.com/advisories/23693 http://osvdb.org/32725 http://www.vupen.com/english/advisories/2007/0147 https://exchange.xforce.ibmcloud.com/vulnerabilities/31428 https://nvd.nist.gov https://www.exploit-db.com/exploits/3112/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-0228

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect