Vulnerabilities > CVE-2007-2602 - Denial-Of-Service vulnerability in Ipswitch Whatsup Gold 11

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

ipswitch

NVD

Published: 2007-05-11

Updated: 2018-10-16

Summary

Buffer overflow in MIBEXTRA.EXE in Ipswitch WhatsUp Gold 11 allows attackers to cause a denial of service (application crash) or execute arbitrary code via a long MIB filename argument. NOTE: If there is not a common scenario under which MIBEXTRA.EXE is called with attacker-controlled command line arguments, then perhaps this issue should not be included in CVE.

Vulnerable Configurations

Part	Description	Count
Application	Ipswitch Ipswitch Whatsup Gold 11	1

References

http://osvdb.org/36217
http://securityreason.com/securityalert/2708
http://www.securityfocus.com/archive/1/468070/100/0/threaded