// For flags

CVE-2007-3872

HP OpenView - Operations OVTrace Buffer Overflow

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Multiple stack-based buffer overflows in the Shared Trace Service (OVTrace) service for HP OpenView Operations A.07.50 for Windows, and possibly earlier versions, allow remote attackers to execute arbitrary code via certain crafted requests.

Múltiples desbordamientos de búfer basados en pila en el servicio Shared Trace Service (OVTrace) para el HP OpenView Operations A.07.50 bajo Windows y, posiblemente, versiones anteriores, permiten a atacantes remotos ejecutar código de su elección a través de ciertas peticiones manipuladas.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-07-18 CVE Reserved
  • 2007-08-09 CVE Published
  • 2010-06-22 First Exploit
  • 2024-08-07 CVE Updated
  • 2024-11-12 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
References (18)
URL Tag Source
http://secunia.com/advisories/26394 Third Party Advisory
http://www.securityfocus.com/bid/25255 Vdb Entry
http://www.securitytracker.com/id?1018548 Vdb Entry
http://www.vupen.com/english/advisories/2007/2841 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/35928 Vdb Entry
URL Date SRC
https://www.exploit-db.com/exploits/16429 2010-06-22
URL Date SRC
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=574 2017-07-29
URL Date SRC
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01106515 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01109171 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01109584 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01109617 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01110576 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01110627 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01111851 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01112038 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01114023 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01114156 2017-07-29
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01115068 2017-07-29
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Hp
Search vendor "Hp"
 Openview Operations
Search vendor "Hp" for product "Openview Operations"
 <= a.07.50
Search vendor "Hp" for product "Openview Operations" and version " <= a.07.50"
windows
Affected
Hp
Search vendor "Hp"
 Shared Trace Service
Search vendor "Hp" for product "Shared Trace Service"
 <= a.07.50
Search vendor "Hp" for product "Shared Trace Service" and version " <= a.07.50"
-
Affected