Vulnerabilities > Eiqnetworks > Enterprise Security Analyzer > 2.5

DATE	CVE	VULNERABILITY TITLE	RISK
2007-10-29	CVE-2007-5699	Buffer Errors vulnerability in Eiqnetworks Enterprise Security Analyzer 2.5 Stack-based buffer overflow in eIQNetworks Enterprise Security Analyzer (ESA) 2.5 allows remote attackers to execute arbitrary code via certain data on TCP port 10616 that results in a long argument to the SEARCHREPORT command, a different vector than CVE-2007-2059. network eiqnetworks CWE-119	6.8
2007-04-18	CVE-2007-2059	Remote Security vulnerability in Eiqnetworks Enterprise Security Analyzer 2.5 Multiple buffer overflows in the ESA protocol implementation in eIQnetworks Enterprise Security Analyzer (ESA) 2.5 allow remote attackers to execute arbitrary code via a long parameter to the (1) DELETESEARCHFOLDER, (2) DELTASK, (3) HMGR_CHECKHOSTSCSV, (4) TASKUPDATEDUSER, (5) VERIFYUSERKEY, or (6) VERIFYPWD command. network low complexity eiqnetworks critical	10.0
2007-01-13	CVE-2007-0228	Denial of Service vulnerability in Eiqnetworks Enterprise Security Analyzer 2.0/2.1/2.5 The DataCollector service in EIQ Networks Network Security Analyzer allows remote attackers to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) &LOGPATH& (6) &FWADELTA& (7) &FWALOG& (8) &SETSYNCHRONOUS& (9) &SETPRGFILE&, or (10) &SETREPLYPORT& string to TCP port 10618, which triggers a NULL pointer dereference. network low complexity eiqnetworks	5.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.