CVE-2007-1972 – BMC Performance Manager SNMP Command Execution Vulnerability

https://notcve.org/view.php?id=CVE-2007-1972

PatrolAgent.exe in BMC Performance Manager does not require authentication for requests to modify configuration files, which allows remote attackers to execute arbitrary code via a request on TCP port 3181 for modification of the masterAgentName and masterAgentStartLine SNMP parameters. NOTE: the vendor disputes this vulnerability, stating that it does not exist when the system is properly configured ** IMPUGNADO ** PatrolAgent.exe en BMC Performance Manager no requiere validación para respuestas de modificación de archivos, lo cual permite a atacantes remotos ejecutar código de su elección a través de respuestas sobre TCP puerto 3181 para la modificación de los parámetros masterAgentName ymasterAgentStartLine SNMP. NOTA: el vendedor impugna esta vulnerabilidad, basándose en que esta no existe cuando el sistema está configurado adecuadamente. These vulnerabilities allows attackers to execute arbitrary code on vulnerable installations of BMC Performance Manager. User interaction is not required to exploit this vulnerability. The specific flaw exists in the PatrolAgent.exe listening on TCP port 3181. • http://securityreason.com/securityalert/2599 http://www.securityfocus.com/archive/1/466223/100/0/threaded http://www.securityfocus.com/archive/1/466274/100/0/threaded http://www.securityfocus.com/bid/23559 http://www.securitytracker.com/id?1017935 http://www.vupen.com/english/advisories/2007/1458 http://www.zerodayinitiative.com/advisories/ZDI-07-020.html •