CVE-2007-0655
published 2007-05-02CVE-2007-0655: The MicroWorld Agent service (MWAGENT.EXE) in MicroWorld Technologies eScan 8.0.671.1, and possibly other versions, allows remote or local attackers to gain…
PriorityP348critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
2.81%
84.7th percentile
The MicroWorld Agent service (MWAGENT.EXE) in MicroWorld Technologies eScan 8.0.671.1, and possibly other versions, allows remote or local attackers to gain privileges and execute arbitrary commands by connecting directly to TCP port 2222.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microworld_technologies | escan | <= 8.0671.1 | — |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-6h4q-v6m9-cvpv: The MicroWorld Agent service (MWAGENT
ghsa_unreviewed·2022-05-01
CVE-2007-0655 [HIGH] GHSA-6h4q-v6m9-cvpv: The MicroWorld Agent service (MWAGENT
The MicroWorld Agent service (MWAGENT.EXE) in MicroWorld Technologies eScan 8.0.671.1, and possibly other versions, allows remote or local attackers to gain privileges and execute arbitrary commands by connecting directly to TCP port 2222.
Red Hat
acroread JavaScript Insecure Method Exposure
vendor_redhat·2008-02-08·CVSS 9.3
CVE-2007-5663 [CRITICAL] acroread JavaScript Insecure Method Exposure
acroread JavaScript Insecure Method Exposure
Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to execute arbitrary code via a crafted PDF file that calls an insecure JavaScript method in the EScript.api plug-in. NOTE: this issue might be subsumed by CVE-2008-0655.
Red Hat
acroread JavaScript Insecure Libary Search Path
vendor_redhat·2008-02-08·CVSS 6.2
CVE-2007-5666 [MEDIUM] acroread JavaScript Insecure Libary Search Path
acroread JavaScript Insecure Libary Search Path
Untrusted search path vulnerability in Adobe Reader and Acrobat 8.1.1 and earlier allows local users to execute arbitrary code via a malicious Security Provider library in the reader's current working directory. NOTE: this issue might be subsumed by CVE-2008-0655.
Red Hat
acroread Multiple buffer overflows
vendor_redhat·2008-02-08·CVSS 7.8
CVE-2007-5659 [HIGH] acroread Multiple buffer overflows
acroread Multiple buffer overflows
Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and earlier allow remote attackers to execute arbitrary code via a PDF file with long arguments to unspecified JavaScript methods. NOTE: this issue might be subsumed by CVE-2008-0655.
No detection rules found.
No public exploits indexed.
arXiv
Graph Analytics for Cyber-Physical System Resilience Quantification
arxiv_fulltext·2025-04-02
Graph Analytics for Cyber-Physical System Resilience Quantification
frontmatter
Graph Analytics for Cyber-Physical
System Resilience Quantification
[inst1,inst3]Romain Dagnas
[inst1]organization=IRT SystemX,
city=Palaiseau,
postcode=91120,
country=France
[inst2]Michel Barbeau
[inst2]organization=Carleton University,
city=Ottawa,
postcode=ON K1S 5B6,
country=Canada
[inst3]Joaquin Garcia-Alfaro
[inst3]organization=SAMOVAR, Télécom SudParis, Institut Polytechnique de Paris,
city=Palaiseau,
postcode=91120,
country=France
[inst1]Reda Yaich
## Abstract
Critical infrastructures integrate a wide range of smart technologies and become highly connected to the cyber world. This is especially true for Cyber-Physical Systems (CPSs), which integrate hardware and software components. Despite the advantages of smart infrastructures, they remain vulnerable to cyb
Bugzilla
CVE-2007-5666 acroread JavaScript Insecure Libary Search Path
bugzilla·2008-02-13·CVSS 6.2
CVE-2007-5666 [MEDIUM] CVE-2007-5666 acroread JavaScript Insecure Libary Search Path
CVE-2007-5666 acroread JavaScript Insecure Libary Search Path
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-5666 to the following vulnerability:
Untrusted search path vulnerability in Adobe Reader and Acrobat 8.1.1 and earlier allows local users to execute arbitrary code via a malicious Security Provider library in the reader's current working directory. NOTE: this issue might be subsumed by CVE-2008-0655.
References:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=655
http://www.adobe.com/support/security/advisories/apsa08-01.html
Discussion:
This issue was addressed in:
Red Hat Enterprise Linux Extras:
http://rhn.redhat.com/errata/RHSA-2008-0144.html
---
Reporter changed to [email protected] by request of Jay Turner.
Bugzilla
CVE-2007-5663 acroread JavaScript Insecure Method Exposure
bugzilla·2008-02-13·CVSS 9.3
CVE-2007-5663 [CRITICAL] CVE-2007-5663 acroread JavaScript Insecure Method Exposure
CVE-2007-5663 acroread JavaScript Insecure Method Exposure
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-5663 to the following vulnerability:
Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to execute arbitrary code via a crafted PDF file that calls an insecure JavaScript method in the EScript.api plug-in. NOTE: this issue might be subsumed by CVE-2008-0655.
References:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=656
http://www.adobe.com/support/security/advisories/apsa08-01.html
http://www.kb.cert.org/vuls/id/140129
Discussion:
This issue was addressed in:
Red Hat Enterprise Linux Extras:
http://rhn.redhat.com/errata/RHSA-2008-0144.html
---
Reporter changed to [email protected] by request of Jay Tu
Bugzilla
CVE-2007-5659 acroread Multiple buffer overflows
bugzilla·2008-02-13·CVSS 7.8
CVE-2007-5659 [HIGH] CVE-2007-5659 acroread Multiple buffer overflows
CVE-2007-5659 acroread Multiple buffer overflows
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-5659 to the following vulnerability:
Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and earlier allow remote attackers to execute arbitrary code via a PDF file with long arguments to unspecified JavaScript methods. NOTE: this issue might be subsumed by CVE-2008-0655.
References:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=657
http://www.adobe.com/support/security/advisories/apsa08-01.html
Discussion:
This issue was addressed in:
Red Hat Enterprise Linux Extras:
http://rhn.redhat.com/errata/RHSA-2008-0144.html
---
Reporter changed to [email protected] by request of Jay Turner.
http://osvdb.org/35732http://secunia.com/advisories/23809http://secunia.com/secunia_research/2007-45/advisory/http://www.securityfocus.com/bid/23759http://www.securitytracker.com/id?1018007http://www.vupen.com/english/advisories/2007/1609https://exchange.xforce.ibmcloud.com/vulnerabilities/34009http://osvdb.org/35732http://secunia.com/advisories/23809http://secunia.com/secunia_research/2007-45/advisory/http://www.securityfocus.com/bid/23759http://www.securitytracker.com/id?1018007http://www.vupen.com/english/advisories/2007/1609https://exchange.xforce.ibmcloud.com/vulnerabilities/34009
2007-05-02
Published