CVSS: 7.5EPSS: 8%CPEs: 1EXPL: 0CVE-2007-5545
https://notcve.org/view.php?id=CVE-2007-5545
Format string vulnerability in TIBCO SmartPGM FX allows remote attackers to execute arbitrary code via format string specifiers in unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. Vulnerabilidad de cadena de formato en TIBCO SmartPGM FX permite a atacantes remotos ejecutar código de su elección mediante vectores no especificados. NOTA: a fecha de 16/10/2007, la única revelación es un preaviso vago sin información de uso inmediato. • http://osvdb.org/45276 http://securityreason.com/securityalert/3249 http://www.irmplc.com/index.php/111-Vendor-Alerts http://www.securityfocus.com/archive/1/482353/100/0/threaded http://www.securityfocus.com/bid/26092 • CWE-134: Use of Externally-Controlled Format String •
CVSS: 9.3EPSS: 8%CPEs: 1EXPL: 0CVE-2007-5546
https://notcve.org/view.php?id=CVE-2007-5546
Multiple stack-based buffer overflows in TIBCO SmartPGM FX allow remote attackers to execute arbitrary code or cause a denial of service (service stop and file-transfer outage) via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. Múltiples desbordamientos de búfer basado en pila en TIBCO SmargPGM GX permiten a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (parada del servicio e indisponibilidad de la transferencia de ficheros) a través de vectores no especificados. NOTA: a fecha de 16/10/2007, la única revelación es un vago pre-aviso sin información de uso inmediato. • http://osvdb.org/45277 http://securityreason.com/securityalert/3249 http://www.irmplc.com/index.php/111-Vendor-Alerts http://www.securityfocus.com/archive/1/482353/100/0/threaded http://www.securityfocus.com/bid/26092 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •