CVE-2007-2957
published 2007-10-31CVE-2007-2957: Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary…
PriorityP350critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
6.22%
92.6th percentile
Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mcafee | e-business_server | <= 8.1.1 | — |
| mcafee | e-business_server | <= 8.5.2 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
http://secunia.com/advisories/26372http://secunia.com/secunia_research/2007-69/advisory/http://securitytracker.com/id?1018878http://www.securityfocus.com/bid/26269http://www.vupen.com/english/advisories/2007/3663https://exchange.xforce.ibmcloud.com/vulnerabilities/38175https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=614035http://secunia.com/advisories/26372http://secunia.com/secunia_research/2007-69/advisory/http://securitytracker.com/id?1018878http://www.securityfocus.com/bid/26269http://www.vupen.com/english/advisories/2007/3663https://exchange.xforce.ibmcloud.com/vulnerabilities/38175https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=614035
2007-10-31
Published