Search

Find a vulnerability

Search criteria

    12 vulnerabilities found for e-business_server by mcafee

    CVE-2008-0127 (GCVE-0-2008-0127)

    Vulnerability from nvd – Published: 2008-01-10 00:00 – Updated: 2024-08-07 07:32
    VLAI
    Summary
    The administration interface in McAfee E-Business Server 8.5.2 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://www.exploit-db.com/exploits/4878 exploitx_refsource_EXPLOIT-DB
    http://securityreason.com/securityalert/3530 third-party-advisoryx_refsource_SREASON
    http://www.vupen.com/english/advisories/2008/0087 vdb-entryx_refsource_VUPEN
    https://knowledge.mcafee.com/SupportSite/dynamick… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/archive/1/486035/100… mailing-listx_refsource_BUGTRAQ
    http://secunia.com/advisories/28408 third-party-advisoryx_refsource_SECUNIA
    http://securitytracker.com/id?1019170 vdb-entryx_refsource_SECTRACK
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/archive/1/485992/100… mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/27197 vdb-entryx_refsource_BID
    Date Public
    2008-01-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T07:32:23.881Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "4878",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "https://www.exploit-db.com/exploits/4878"
              },
              {
                "name": "3530",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/3530"
              },
              {
                "name": "ADV-2008-0087",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2008/0087"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614472"
              },
              {
                "name": "mcafee-ebusiness-authentication-packet-dos(39561)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39561"
              },
              {
                "name": "20080109 [INFIGO-2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS - Corrected",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/486035/100/0/threaded"
              },
              {
                "name": "28408",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/28408"
              },
              {
                "name": "1019170",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1019170"
              },
              {
                "name": "mcafee-ebusiness-packet-code-execution(39563)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39563"
              },
              {
                "name": "20080109 [INFIGO 2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/485992/100/0/threaded"
              },
              {
                "name": "27197",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/27197"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2008-01-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The administration interface in McAfee E-Business Server 8.5.2 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "4878",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "https://www.exploit-db.com/exploits/4878"
            },
            {
              "name": "3530",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/3530"
            },
            {
              "name": "ADV-2008-0087",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2008/0087"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614472"
            },
            {
              "name": "mcafee-ebusiness-authentication-packet-dos(39561)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39561"
            },
            {
              "name": "20080109 [INFIGO-2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS - Corrected",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/486035/100/0/threaded"
            },
            {
              "name": "28408",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/28408"
            },
            {
              "name": "1019170",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1019170"
            },
            {
              "name": "mcafee-ebusiness-packet-code-execution(39563)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39563"
            },
            {
              "name": "20080109 [INFIGO 2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/485992/100/0/threaded"
            },
            {
              "name": "27197",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/27197"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2008-0127",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The administration interface in McAfee E-Business Server 8.5.2 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "4878",
                  "refsource": "EXPLOIT-DB",
                  "url": "https://www.exploit-db.com/exploits/4878"
                },
                {
                  "name": "3530",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/3530"
                },
                {
                  "name": "ADV-2008-0087",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2008/0087"
                },
                {
                  "name": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614472",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614472"
                },
                {
                  "name": "mcafee-ebusiness-authentication-packet-dos(39561)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39561"
                },
                {
                  "name": "20080109 [INFIGO-2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS - Corrected",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/486035/100/0/threaded"
                },
                {
                  "name": "28408",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/28408"
                },
                {
                  "name": "1019170",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1019170"
                },
                {
                  "name": "mcafee-ebusiness-packet-code-execution(39563)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39563"
                },
                {
                  "name": "20080109 [INFIGO 2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/485992/100/0/threaded"
                },
                {
                  "name": "27197",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/27197"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2008-0127",
        "datePublished": "2008-01-10T00:00:00.000Z",
        "dateReserved": "2008-01-07T00:00:00.000Z",
        "dateUpdated": "2024-08-07T07:32:23.881Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-2957 (GCVE-0-2007-2957)

    Vulnerability from nvd – Published: 2007-10-31 22:00 – Updated: 2024-08-07 13:57
    VLAI
    Summary
    Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-10-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T13:57:54.648Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614035"
              },
              {
                "name": "ADV-2007-3663",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/3663"
              },
              {
                "name": "26372",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26372"
              },
              {
                "name": "26269",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/26269"
              },
              {
                "name": "mcafee-ebusiness-auth-packet-bo(38175)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38175"
              },
              {
                "name": "1018878",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1018878"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://secunia.com/secunia_research/2007-69/advisory/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-10-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
            "shortName": "flexera"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614035"
            },
            {
              "name": "ADV-2007-3663",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/3663"
            },
            {
              "name": "26372",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26372"
            },
            {
              "name": "26269",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/26269"
            },
            {
              "name": "mcafee-ebusiness-auth-packet-bo(38175)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38175"
            },
            {
              "name": "1018878",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1018878"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://secunia.com/secunia_research/2007-69/advisory/"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "PSIRT-CNA@flexerasoftware.com",
              "ID": "CVE-2007-2957",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614035",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614035"
                },
                {
                  "name": "ADV-2007-3663",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/3663"
                },
                {
                  "name": "26372",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26372"
                },
                {
                  "name": "26269",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/26269"
                },
                {
                  "name": "mcafee-ebusiness-auth-packet-bo(38175)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38175"
                },
                {
                  "name": "1018878",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1018878"
                },
                {
                  "name": "http://secunia.com/secunia_research/2007-69/advisory/",
                  "refsource": "MISC",
                  "url": "http://secunia.com/secunia_research/2007-69/advisory/"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
        "assignerShortName": "flexera",
        "cveId": "CVE-2007-2957",
        "datePublished": "2007-10-31T22:00:00.000Z",
        "dateReserved": "2007-05-31T00:00:00.000Z",
        "dateUpdated": "2024-08-07T13:57:54.648Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-5273 (GCVE-0-2006-5273)

    Vulnerability from nvd – Published: 2007-07-12 00:00 – Updated: 2024-08-07 19:41
    VLAI
    Summary
    Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2007/2498 vdb-entryx_refsource_VUPEN
    http://www.securitytracker.com/id?1018363 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/26029 third-party-advisoryx_refsource_SECUNIA
    http://www.nessus.org/plugins/index.php?view=sing… x_refsource_MISC
    http://www.osvdb.org/36100 vdb-entryx_refsource_OSVDB
    http://www.iss.net/threats/269.html third-party-advisoryx_refsource_ISS
    https://knowledge.mcafee.com/article/763/613366_f… x_refsource_CONFIRM
    http://www.securityfocus.com/bid/24863 vdb-entryx_refsource_BID
    Date Public
    2007-07-10 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:41:05.351Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "security-management-bo(31164)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31164"
              },
              {
                "name": "ADV-2007-2498",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2498"
              },
              {
                "name": "1018363",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018363"
              },
              {
                "name": "26029",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26029"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.nessus.org/plugins/index.php?view=single\u0026id=25702"
              },
              {
                "name": "36100",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/36100"
              },
              {
                "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_ISS",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/threats/269.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html"
              },
              {
                "name": "24863",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24863"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "security-management-bo(31164)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31164"
            },
            {
              "name": "ADV-2007-2498",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2498"
            },
            {
              "name": "1018363",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018363"
            },
            {
              "name": "26029",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26029"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.nessus.org/plugins/index.php?view=single\u0026id=25702"
            },
            {
              "name": "36100",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/36100"
            },
            {
              "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
              "tags": [
                "third-party-advisory",
                "x_refsource_ISS"
              ],
              "url": "http://www.iss.net/threats/269.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html"
            },
            {
              "name": "24863",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24863"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-5273",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "security-management-bo(31164)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31164"
                },
                {
                  "name": "ADV-2007-2498",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2498"
                },
                {
                  "name": "1018363",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018363"
                },
                {
                  "name": "26029",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26029"
                },
                {
                  "name": "http://www.nessus.org/plugins/index.php?view=single\u0026id=25702",
                  "refsource": "MISC",
                  "url": "http://www.nessus.org/plugins/index.php?view=single\u0026id=25702"
                },
                {
                  "name": "36100",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/36100"
                },
                {
                  "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                  "refsource": "ISS",
                  "url": "http://www.iss.net/threats/269.html"
                },
                {
                  "name": "https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html"
                },
                {
                  "name": "24863",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24863"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-5273",
        "datePublished": "2007-07-12T00:00:00.000Z",
        "dateReserved": "2006-10-13T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:41:05.351Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-5272 (GCVE-0-2006-5272)

    Vulnerability from nvd – Published: 2007-07-12 00:00 – Updated: 2024-08-07 19:41
    VLAI
    Summary
    Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.vupen.com/english/advisories/2007/2498 vdb-entryx_refsource_VUPEN
    https://knowledge.mcafee.com/article/762/613365_f… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securitytracker.com/id?1018363 vdb-entryx_refsource_SECTRACK
    http://www.osvdb.org/36099 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/26029 third-party-advisoryx_refsource_SECUNIA
    http://www.iss.net/threats/269.html third-party-advisoryx_refsource_ISS
    http://www.securityfocus.com/bid/24863 vdb-entryx_refsource_BID
    Date Public
    2007-07-10 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:41:05.763Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ADV-2007-2498",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2498"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html"
              },
              {
                "name": "security-management-ping-bo(31163)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31163"
              },
              {
                "name": "1018363",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018363"
              },
              {
                "name": "36099",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/36099"
              },
              {
                "name": "26029",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26029"
              },
              {
                "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_ISS",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/threats/269.html"
              },
              {
                "name": "24863",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24863"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "ADV-2007-2498",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2498"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html"
            },
            {
              "name": "security-management-ping-bo(31163)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31163"
            },
            {
              "name": "1018363",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018363"
            },
            {
              "name": "36099",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/36099"
            },
            {
              "name": "26029",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26029"
            },
            {
              "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
              "tags": [
                "third-party-advisory",
                "x_refsource_ISS"
              ],
              "url": "http://www.iss.net/threats/269.html"
            },
            {
              "name": "24863",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24863"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-5272",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "ADV-2007-2498",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2498"
                },
                {
                  "name": "https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html"
                },
                {
                  "name": "security-management-ping-bo(31163)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31163"
                },
                {
                  "name": "1018363",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018363"
                },
                {
                  "name": "36099",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/36099"
                },
                {
                  "name": "26029",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26029"
                },
                {
                  "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                  "refsource": "ISS",
                  "url": "http://www.iss.net/threats/269.html"
                },
                {
                  "name": "24863",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24863"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-5272",
        "datePublished": "2007-07-12T00:00:00.000Z",
        "dateReserved": "2006-10-13T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:41:05.763Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-5271 (GCVE-0-2006-5271)

    Vulnerability from nvd – Published: 2007-07-12 00:00 – Updated: 2024-08-07 19:41
    VLAI
    Summary
    Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet, which causes stack corruption.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.vupen.com/english/advisories/2007/2498 vdb-entryx_refsource_VUPEN
    http://www.securitytracker.com/id?1018363 vdb-entryx_refsource_SECTRACK
    https://knowledge.mcafee.com/article/761/613364_f… x_refsource_CONFIRM
    http://secunia.com/advisories/26029 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/36098 vdb-entryx_refsource_OSVDB
    http://www.iss.net/threats/269.html third-party-advisoryx_refsource_ISS
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/24863 vdb-entryx_refsource_BID
    Date Public
    2007-07-10 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:41:05.774Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ADV-2007-2498",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2498"
              },
              {
                "name": "1018363",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018363"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html"
              },
              {
                "name": "26029",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26029"
              },
              {
                "name": "36098",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/36098"
              },
              {
                "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_ISS",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/threats/269.html"
              },
              {
                "name": "security-management-integer-underflow(31162)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31162"
              },
              {
                "name": "24863",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24863"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet, which causes stack corruption."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "ADV-2007-2498",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2498"
            },
            {
              "name": "1018363",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018363"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html"
            },
            {
              "name": "26029",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26029"
            },
            {
              "name": "36098",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/36098"
            },
            {
              "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
              "tags": [
                "third-party-advisory",
                "x_refsource_ISS"
              ],
              "url": "http://www.iss.net/threats/269.html"
            },
            {
              "name": "security-management-integer-underflow(31162)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31162"
            },
            {
              "name": "24863",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24863"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-5271",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet, which causes stack corruption."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "ADV-2007-2498",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2498"
                },
                {
                  "name": "1018363",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018363"
                },
                {
                  "name": "https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html"
                },
                {
                  "name": "26029",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26029"
                },
                {
                  "name": "36098",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/36098"
                },
                {
                  "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                  "refsource": "ISS",
                  "url": "http://www.iss.net/threats/269.html"
                },
                {
                  "name": "security-management-integer-underflow(31162)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31162"
                },
                {
                  "name": "24863",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24863"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-5271",
        "datePublished": "2007-07-12T00:00:00.000Z",
        "dateReserved": "2006-10-13T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:41:05.774Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-2151 (GCVE-0-2007-2151)

    Vulnerability from nvd – Published: 2007-04-19 10:00 – Updated: 2024-08-07 13:23
    VLAI
    Summary
    The administration server in McAfee e-Business Server before 8.1.1 and 8.5.x before 8.5.2 allows remote attackers to cause a denial of service (service crash) via a large length value in a malformed authentication packet, which triggers a heap over-read.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.vupen.com/english/advisories/2007/1434 vdb-entryx_refsource_VUPEN
    http://labs.idefense.com/intelligence/vulnerabili… third-party-advisoryx_refsource_IDEFENSE
    https://knowledge.mcafee.com/SupportSite/dynamick… x_refsource_CONFIRM
    http://www.securitytracker.com/id?1017929 vdb-entryx_refsource_SECTRACK
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/23544 vdb-entryx_refsource_BID
    http://secunia.com/advisories/24893 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2007-04-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T13:23:50.749Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ADV-2007-1434",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/1434"
              },
              {
                "name": "20070417 McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=516"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751\u0026command=show\u0026forward=nonthreadedKC"
              },
              {
                "name": "1017929",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1017929"
              },
              {
                "name": "mcafee-ebusiness-utility-dos(33730)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33730"
              },
              {
                "name": "23544",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/23544"
              },
              {
                "name": "24893",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24893"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-04-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The administration server in McAfee e-Business Server before 8.1.1 and 8.5.x before 8.5.2 allows remote attackers to cause a denial of service (service crash) via a large length value in a malformed authentication packet, which triggers a heap over-read."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "ADV-2007-1434",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/1434"
            },
            {
              "name": "20070417 McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=516"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751\u0026command=show\u0026forward=nonthreadedKC"
            },
            {
              "name": "1017929",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1017929"
            },
            {
              "name": "mcafee-ebusiness-utility-dos(33730)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33730"
            },
            {
              "name": "23544",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/23544"
            },
            {
              "name": "24893",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24893"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-2151",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The administration server in McAfee e-Business Server before 8.1.1 and 8.5.x before 8.5.2 allows remote attackers to cause a denial of service (service crash) via a large length value in a malformed authentication packet, which triggers a heap over-read."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "ADV-2007-1434",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/1434"
                },
                {
                  "name": "20070417 McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=516"
                },
                {
                  "name": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751\u0026command=show\u0026forward=nonthreadedKC",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751\u0026command=show\u0026forward=nonthreadedKC"
                },
                {
                  "name": "1017929",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1017929"
                },
                {
                  "name": "mcafee-ebusiness-utility-dos(33730)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33730"
                },
                {
                  "name": "23544",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/23544"
                },
                {
                  "name": "24893",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24893"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-2151",
        "datePublished": "2007-04-19T10:00:00.000Z",
        "dateReserved": "2007-04-19T00:00:00.000Z",
        "dateUpdated": "2024-08-07T13:23:50.749Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2008-0127 (GCVE-0-2008-0127)

    Vulnerability from cvelistv5 – Published: 2008-01-10 00:00 – Updated: 2024-08-07 07:32
    VLAI
    Summary
    The administration interface in McAfee E-Business Server 8.5.2 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://www.exploit-db.com/exploits/4878 exploitx_refsource_EXPLOIT-DB
    http://securityreason.com/securityalert/3530 third-party-advisoryx_refsource_SREASON
    http://www.vupen.com/english/advisories/2008/0087 vdb-entryx_refsource_VUPEN
    https://knowledge.mcafee.com/SupportSite/dynamick… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/archive/1/486035/100… mailing-listx_refsource_BUGTRAQ
    http://secunia.com/advisories/28408 third-party-advisoryx_refsource_SECUNIA
    http://securitytracker.com/id?1019170 vdb-entryx_refsource_SECTRACK
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/archive/1/485992/100… mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/27197 vdb-entryx_refsource_BID
    Date Public
    2008-01-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T07:32:23.881Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "4878",
                "tags": [
                  "exploit",
                  "x_refsource_EXPLOIT-DB",
                  "x_transferred"
                ],
                "url": "https://www.exploit-db.com/exploits/4878"
              },
              {
                "name": "3530",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/3530"
              },
              {
                "name": "ADV-2008-0087",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2008/0087"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614472"
              },
              {
                "name": "mcafee-ebusiness-authentication-packet-dos(39561)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39561"
              },
              {
                "name": "20080109 [INFIGO-2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS - Corrected",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/486035/100/0/threaded"
              },
              {
                "name": "28408",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/28408"
              },
              {
                "name": "1019170",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1019170"
              },
              {
                "name": "mcafee-ebusiness-packet-code-execution(39563)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39563"
              },
              {
                "name": "20080109 [INFIGO 2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/485992/100/0/threaded"
              },
              {
                "name": "27197",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/27197"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2008-01-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The administration interface in McAfee E-Business Server 8.5.2 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "4878",
              "tags": [
                "exploit",
                "x_refsource_EXPLOIT-DB"
              ],
              "url": "https://www.exploit-db.com/exploits/4878"
            },
            {
              "name": "3530",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/3530"
            },
            {
              "name": "ADV-2008-0087",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2008/0087"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614472"
            },
            {
              "name": "mcafee-ebusiness-authentication-packet-dos(39561)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39561"
            },
            {
              "name": "20080109 [INFIGO-2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS - Corrected",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/486035/100/0/threaded"
            },
            {
              "name": "28408",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/28408"
            },
            {
              "name": "1019170",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1019170"
            },
            {
              "name": "mcafee-ebusiness-packet-code-execution(39563)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39563"
            },
            {
              "name": "20080109 [INFIGO 2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/485992/100/0/threaded"
            },
            {
              "name": "27197",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/27197"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2008-0127",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The administration interface in McAfee E-Business Server 8.5.2 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "4878",
                  "refsource": "EXPLOIT-DB",
                  "url": "https://www.exploit-db.com/exploits/4878"
                },
                {
                  "name": "3530",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/3530"
                },
                {
                  "name": "ADV-2008-0087",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2008/0087"
                },
                {
                  "name": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614472",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614472"
                },
                {
                  "name": "mcafee-ebusiness-authentication-packet-dos(39561)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39561"
                },
                {
                  "name": "20080109 [INFIGO-2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS - Corrected",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/486035/100/0/threaded"
                },
                {
                  "name": "28408",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/28408"
                },
                {
                  "name": "1019170",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1019170"
                },
                {
                  "name": "mcafee-ebusiness-packet-code-execution(39563)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39563"
                },
                {
                  "name": "20080109 [INFIGO 2008-01-06]: McAfee E-Business Server Remote Preauth Code Execution / DoS",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/485992/100/0/threaded"
                },
                {
                  "name": "27197",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/27197"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2008-0127",
        "datePublished": "2008-01-10T00:00:00.000Z",
        "dateReserved": "2008-01-07T00:00:00.000Z",
        "dateUpdated": "2024-08-07T07:32:23.881Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-2957 (GCVE-0-2007-2957)

    Vulnerability from cvelistv5 – Published: 2007-10-31 22:00 – Updated: 2024-08-07 13:57
    VLAI
    Summary
    Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-10-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T13:57:54.648Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614035"
              },
              {
                "name": "ADV-2007-3663",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/3663"
              },
              {
                "name": "26372",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26372"
              },
              {
                "name": "26269",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/26269"
              },
              {
                "name": "mcafee-ebusiness-auth-packet-bo(38175)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38175"
              },
              {
                "name": "1018878",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1018878"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://secunia.com/secunia_research/2007-69/advisory/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-10-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
            "shortName": "flexera"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614035"
            },
            {
              "name": "ADV-2007-3663",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/3663"
            },
            {
              "name": "26372",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26372"
            },
            {
              "name": "26269",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/26269"
            },
            {
              "name": "mcafee-ebusiness-auth-packet-bo(38175)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38175"
            },
            {
              "name": "1018878",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1018878"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://secunia.com/secunia_research/2007-69/advisory/"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "PSIRT-CNA@flexerasoftware.com",
              "ID": "CVE-2007-2957",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614035",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614035\u0026sliceId=SAL_Public\u0026command=show\u0026forward=nonthreadedKC\u0026kcId=614035"
                },
                {
                  "name": "ADV-2007-3663",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/3663"
                },
                {
                  "name": "26372",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26372"
                },
                {
                  "name": "26269",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/26269"
                },
                {
                  "name": "mcafee-ebusiness-auth-packet-bo(38175)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38175"
                },
                {
                  "name": "1018878",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1018878"
                },
                {
                  "name": "http://secunia.com/secunia_research/2007-69/advisory/",
                  "refsource": "MISC",
                  "url": "http://secunia.com/secunia_research/2007-69/advisory/"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
        "assignerShortName": "flexera",
        "cveId": "CVE-2007-2957",
        "datePublished": "2007-10-31T22:00:00.000Z",
        "dateReserved": "2007-05-31T00:00:00.000Z",
        "dateUpdated": "2024-08-07T13:57:54.648Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-5273 (GCVE-0-2006-5273)

    Vulnerability from cvelistv5 – Published: 2007-07-12 00:00 – Updated: 2024-08-07 19:41
    VLAI
    Summary
    Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2007/2498 vdb-entryx_refsource_VUPEN
    http://www.securitytracker.com/id?1018363 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/26029 third-party-advisoryx_refsource_SECUNIA
    http://www.nessus.org/plugins/index.php?view=sing… x_refsource_MISC
    http://www.osvdb.org/36100 vdb-entryx_refsource_OSVDB
    http://www.iss.net/threats/269.html third-party-advisoryx_refsource_ISS
    https://knowledge.mcafee.com/article/763/613366_f… x_refsource_CONFIRM
    http://www.securityfocus.com/bid/24863 vdb-entryx_refsource_BID
    Date Public
    2007-07-10 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:41:05.351Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "security-management-bo(31164)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31164"
              },
              {
                "name": "ADV-2007-2498",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2498"
              },
              {
                "name": "1018363",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018363"
              },
              {
                "name": "26029",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26029"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.nessus.org/plugins/index.php?view=single\u0026id=25702"
              },
              {
                "name": "36100",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/36100"
              },
              {
                "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_ISS",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/threats/269.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html"
              },
              {
                "name": "24863",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24863"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "security-management-bo(31164)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31164"
            },
            {
              "name": "ADV-2007-2498",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2498"
            },
            {
              "name": "1018363",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018363"
            },
            {
              "name": "26029",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26029"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.nessus.org/plugins/index.php?view=single\u0026id=25702"
            },
            {
              "name": "36100",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/36100"
            },
            {
              "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
              "tags": [
                "third-party-advisory",
                "x_refsource_ISS"
              ],
              "url": "http://www.iss.net/threats/269.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html"
            },
            {
              "name": "24863",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24863"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-5273",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "security-management-bo(31164)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31164"
                },
                {
                  "name": "ADV-2007-2498",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2498"
                },
                {
                  "name": "1018363",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018363"
                },
                {
                  "name": "26029",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26029"
                },
                {
                  "name": "http://www.nessus.org/plugins/index.php?view=single\u0026id=25702",
                  "refsource": "MISC",
                  "url": "http://www.nessus.org/plugins/index.php?view=single\u0026id=25702"
                },
                {
                  "name": "36100",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/36100"
                },
                {
                  "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                  "refsource": "ISS",
                  "url": "http://www.iss.net/threats/269.html"
                },
                {
                  "name": "https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html"
                },
                {
                  "name": "24863",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24863"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-5273",
        "datePublished": "2007-07-12T00:00:00.000Z",
        "dateReserved": "2006-10-13T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:41:05.351Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-5272 (GCVE-0-2006-5272)

    Vulnerability from cvelistv5 – Published: 2007-07-12 00:00 – Updated: 2024-08-07 19:41
    VLAI
    Summary
    Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.vupen.com/english/advisories/2007/2498 vdb-entryx_refsource_VUPEN
    https://knowledge.mcafee.com/article/762/613365_f… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securitytracker.com/id?1018363 vdb-entryx_refsource_SECTRACK
    http://www.osvdb.org/36099 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/26029 third-party-advisoryx_refsource_SECUNIA
    http://www.iss.net/threats/269.html third-party-advisoryx_refsource_ISS
    http://www.securityfocus.com/bid/24863 vdb-entryx_refsource_BID
    Date Public
    2007-07-10 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:41:05.763Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ADV-2007-2498",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2498"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html"
              },
              {
                "name": "security-management-ping-bo(31163)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31163"
              },
              {
                "name": "1018363",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018363"
              },
              {
                "name": "36099",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/36099"
              },
              {
                "name": "26029",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26029"
              },
              {
                "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_ISS",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/threats/269.html"
              },
              {
                "name": "24863",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24863"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "ADV-2007-2498",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2498"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html"
            },
            {
              "name": "security-management-ping-bo(31163)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31163"
            },
            {
              "name": "1018363",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018363"
            },
            {
              "name": "36099",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/36099"
            },
            {
              "name": "26029",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26029"
            },
            {
              "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
              "tags": [
                "third-party-advisory",
                "x_refsource_ISS"
              ],
              "url": "http://www.iss.net/threats/269.html"
            },
            {
              "name": "24863",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24863"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-5272",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "ADV-2007-2498",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2498"
                },
                {
                  "name": "https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html"
                },
                {
                  "name": "security-management-ping-bo(31163)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31163"
                },
                {
                  "name": "1018363",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018363"
                },
                {
                  "name": "36099",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/36099"
                },
                {
                  "name": "26029",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26029"
                },
                {
                  "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                  "refsource": "ISS",
                  "url": "http://www.iss.net/threats/269.html"
                },
                {
                  "name": "24863",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24863"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-5272",
        "datePublished": "2007-07-12T00:00:00.000Z",
        "dateReserved": "2006-10-13T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:41:05.763Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-5271 (GCVE-0-2006-5271)

    Vulnerability from cvelistv5 – Published: 2007-07-12 00:00 – Updated: 2024-08-07 19:41
    VLAI
    Summary
    Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet, which causes stack corruption.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.vupen.com/english/advisories/2007/2498 vdb-entryx_refsource_VUPEN
    http://www.securitytracker.com/id?1018363 vdb-entryx_refsource_SECTRACK
    https://knowledge.mcafee.com/article/761/613364_f… x_refsource_CONFIRM
    http://secunia.com/advisories/26029 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/36098 vdb-entryx_refsource_OSVDB
    http://www.iss.net/threats/269.html third-party-advisoryx_refsource_ISS
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/24863 vdb-entryx_refsource_BID
    Date Public
    2007-07-10 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:41:05.774Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ADV-2007-2498",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2498"
              },
              {
                "name": "1018363",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018363"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html"
              },
              {
                "name": "26029",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/26029"
              },
              {
                "name": "36098",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/36098"
              },
              {
                "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_ISS",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/threats/269.html"
              },
              {
                "name": "security-management-integer-underflow(31162)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31162"
              },
              {
                "name": "24863",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24863"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet, which causes stack corruption."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "ADV-2007-2498",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2498"
            },
            {
              "name": "1018363",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018363"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html"
            },
            {
              "name": "26029",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/26029"
            },
            {
              "name": "36098",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/36098"
            },
            {
              "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
              "tags": [
                "third-party-advisory",
                "x_refsource_ISS"
              ],
              "url": "http://www.iss.net/threats/269.html"
            },
            {
              "name": "security-management-integer-underflow(31162)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31162"
            },
            {
              "name": "24863",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24863"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-5271",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet, which causes stack corruption."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "ADV-2007-2498",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2498"
                },
                {
                  "name": "1018363",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018363"
                },
                {
                  "name": "https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html"
                },
                {
                  "name": "26029",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/26029"
                },
                {
                  "name": "36098",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/36098"
                },
                {
                  "name": "20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution",
                  "refsource": "ISS",
                  "url": "http://www.iss.net/threats/269.html"
                },
                {
                  "name": "security-management-integer-underflow(31162)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31162"
                },
                {
                  "name": "24863",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24863"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-5271",
        "datePublished": "2007-07-12T00:00:00.000Z",
        "dateReserved": "2006-10-13T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:41:05.774Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-2151 (GCVE-0-2007-2151)

    Vulnerability from cvelistv5 – Published: 2007-04-19 10:00 – Updated: 2024-08-07 13:23
    VLAI
    Summary
    The administration server in McAfee e-Business Server before 8.1.1 and 8.5.x before 8.5.2 allows remote attackers to cause a denial of service (service crash) via a large length value in a malformed authentication packet, which triggers a heap over-read.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.vupen.com/english/advisories/2007/1434 vdb-entryx_refsource_VUPEN
    http://labs.idefense.com/intelligence/vulnerabili… third-party-advisoryx_refsource_IDEFENSE
    https://knowledge.mcafee.com/SupportSite/dynamick… x_refsource_CONFIRM
    http://www.securitytracker.com/id?1017929 vdb-entryx_refsource_SECTRACK
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/23544 vdb-entryx_refsource_BID
    http://secunia.com/advisories/24893 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2007-04-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T13:23:50.749Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ADV-2007-1434",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/1434"
              },
              {
                "name": "20070417 McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=516"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751\u0026command=show\u0026forward=nonthreadedKC"
              },
              {
                "name": "1017929",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1017929"
              },
              {
                "name": "mcafee-ebusiness-utility-dos(33730)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33730"
              },
              {
                "name": "23544",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/23544"
              },
              {
                "name": "24893",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24893"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-04-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The administration server in McAfee e-Business Server before 8.1.1 and 8.5.x before 8.5.2 allows remote attackers to cause a denial of service (service crash) via a large length value in a malformed authentication packet, which triggers a heap over-read."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "ADV-2007-1434",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/1434"
            },
            {
              "name": "20070417 McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=516"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751\u0026command=show\u0026forward=nonthreadedKC"
            },
            {
              "name": "1017929",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1017929"
            },
            {
              "name": "mcafee-ebusiness-utility-dos(33730)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33730"
            },
            {
              "name": "23544",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/23544"
            },
            {
              "name": "24893",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24893"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-2151",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The administration server in McAfee e-Business Server before 8.1.1 and 8.5.x before 8.5.2 allows remote attackers to cause a denial of service (service crash) via a large length value in a malformed authentication packet, which triggers a heap over-read."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "ADV-2007-1434",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/1434"
                },
                {
                  "name": "20070417 McAfee E-Business Admin Server Invalid Data Length DoS Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=516"
                },
                {
                  "name": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751\u0026command=show\u0026forward=nonthreadedKC",
                  "refsource": "CONFIRM",
                  "url": "https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=612751\u0026command=show\u0026forward=nonthreadedKC"
                },
                {
                  "name": "1017929",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1017929"
                },
                {
                  "name": "mcafee-ebusiness-utility-dos(33730)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33730"
                },
                {
                  "name": "23544",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/23544"
                },
                {
                  "name": "24893",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24893"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-2151",
        "datePublished": "2007-04-19T10:00:00.000Z",
        "dateReserved": "2007-04-19T00:00:00.000Z",
        "dateUpdated": "2024-08-07T13:23:50.749Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }