Published: 18/04/2007 Updated: 16/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Multiple buffer overflows in the ESA protocol implementation in eIQnetworks Enterprise Security Analyzer (ESA) 2.5 allow remote malicious users to execute arbitrary code via a long parameter to the (1) DELETESEARCHFOLDER, (2) DELTASK, (3) HMGR_CHECKHOSTSCSV, (4) TASKUPDATEDUSER, (5) VERIFYUSERKEY, or (6) VERIFYPWD command.

Vulnerable Product	Search on Vulmon	Subscribe to Product
eiqnetworks enterprise security analyzer 2.5

source: wwwsecurityfocuscom/bid/23454/info eIQnetworks Enterprise Security Analyzer is prone to multiple buffer-overflow vulnerabilities because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer Exploiting these issues allows remote attackers to execute arbitra ...

NVD-CWE-Other http://www.infigo.hr/en/in_focus/advisories/INFIGO-2007-04-05 http://secunia.com/advisories/24881 http://www.vupen.com/english/advisories/2007/1380 https://exchange.xforce.ibmcloud.com/vulnerabilities/33646 http://www.securityfocus.com/archive/1/465488/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/29850/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2059

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect