CVE-2007-1173

https://notcve.org/view.php?id=CVE-2007-1173

Multiple buffer overflows in the CentennialIPTransferServer service (XFERWAN.EXE), as used by (1) Centennial Discovery 2006 Feature Pack 1, (2) Numara Asset Manager 8.0, and (3) Symantec Discovery 6.5, allow remote attackers to execute arbitrary code via long strings in a crafted TCP packet. Múltiples desbordamientos de búfer en el servicio CentennialIPTransferServer (XFERWAN.EXE), como el usado por (1) Centennial Discovery 2006 Feature Pack 1, (2) Numara Asset Manager 8.0, y (3) Symantec Discovery 6.5, permite a atacantes remotos ejecutar código de su elección mediante cadenas largas a paquetes TCP manipulados artesanalmente. • http://osvdb.org/35076 http://secunia.com/advisories/24090 http://secunia.com/advisories/24281 http://secunia.com/advisories/24329 http://secunia.com/secunia_research/2007-41/advisory http://secunia.com/secunia_research/2007-42/advisory http://secunia.com/secunia_research/2007-43/advisory http://www.securityfocus.com/bid/24002 http://www.securitytracker.com/id?1018072 http://www.vupen.com/english/advisories/2007/1832 http://www.vupen.com/english/advisories/2007/1833 http: •