Microfocus Visibroker vulnerabilities
5 known vulnerabilities affecting microfocus/visibroker.
Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-7126P3CRITICALCVSS 10.0PoC≤ 08.00.00.c1.032009-08-31
CVE-2008-7126 [CRITICAL] CWE-189 CVE-2008-7126: Integer overflow in osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows
Integer overflow in osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet with a large string length value to UDP port 14000, which triggers a heap-based buffer overflow.
nvd
CVE-2017-9282P3CRITICALCVSS 9.8v8.52017-09-21
CVE-2017-9282 [CRITICAL] CWE-190 CVE-2017-9282: An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, lead
An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed.
nvd
CVE-2017-9283P3CRITICALCVSS 9.8v8.52017-09-21
CVE-2017-9283 [CRITICAL] CWE-125 CVE-2017-9283: An out-of-bounds read (CWE-125) vulnerability exists in Micro Focus VisiBroker 8.5. The feasibility
An out-of-bounds read (CWE-125) vulnerability exists in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed.
nvd
CVE-2017-9281P4HIGHCVSS 7.5v8.52017-09-21
CVE-2017-9281 [HIGH] CWE-190 CVE-2017-9281: An integer overflow (CWE-190) potentially causing an out-of-bounds read (CWE-125) vulnerability in M
An integer overflow (CWE-190) potentially causing an out-of-bounds read (CWE-125) vulnerability in Micro Focus VisiBroker 8.5 can lead to a denial of service.
nvd
CVE-2008-7127P4MEDIUMCVSS 5.0≤ 08.00.00.c1.032009-08-31
CVE-2008-7127 [MEDIUM] CWE-399 CVE-2008-7127: osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows remote attackers to
osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows remote attackers to cause a denial of service (crash) via a crafted packet with a large string length value to UDP port 14000, which triggers a memory allocation failure that is not properly handled.
nvd