CVE-2007-2602
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Buffer overflow in MIBEXTRA.EXE in Ipswitch WhatsUp Gold 11 allows attackers to cause a denial of service (application crash) or execute arbitrary code via a long MIB filename argument. NOTE: If there is not a common scenario under which MIBEXTRA.EXE is called with attacker-controlled command line arguments, then perhaps this issue should not be included in CVE.
Desbordamiento de búfer en el MIBEXTRA.EXE del Ipswitch WhatsUp Gold 11 permite a los atacantes provocar una denegación de servicio (caída de la aplicación) o ejecutar código de su elección a través de un argumento de nombre de fichero MIB largo. NOTA: Si no hay un escenario común bajo el que el MIBEXTRA.EXE es llamado con un ataque controlado por argumentos de línea de comandos, tal vez esta vulnerabilidad no debería de incluirse en el CVE.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-05-11 CVE Reserved
- 2007-05-11 CVE Published
- 2024-08-07 CVE Updated
- 2024-08-28 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/36217 | Vdb Entry | |
| http://securityreason.com/securityalert/2708 | Third Party Advisory | |
| http://www.securityfocus.com/archive/1/468070/100/0/threaded | Mailing List |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ipswitch Search vendor "Ipswitch" | Whatsup Gold Search vendor "Ipswitch" for product "Whatsup Gold" | 11 Search vendor "Ipswitch" for product "Whatsup Gold" and version "11" | - |
Affected
| ||||||