Vulnerabilities > CVE-2007-2514 - Remote Buffer Overflow vulnerability in Multiple Vendor XFERWAN.EXE Filename
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Stack-based buffer overflow in XferWan.exe as used in multiple products including (1) Symantec Discovery 6.5, (2) Numara Asset Manager 8.0, and (3) Centennial UK Ltd Discovery 2006 Feature Pack, allows remote attackers to execute arbitrary code via a long request. NOTE: this might be a reservation duplicate of CVE-2007-1173. "This issue only affects systems running non-secure communications, which comprise a very small percentage of installations worldwide."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
Application | 1 | |
Application | 1 |
References
- http://dvlabs.tippingpoint.com/advisory/TPTI-07-10
- http://osvdb.org/42059
- http://securityreason.com/securityalert/2785
- http://www.securityfocus.com/archive/1/470563/100/0/threaded
- http://www.securityfocus.com/bid/24317
- http://www.securitytracker.com/id?1018191
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34723