Vulnerabilities > Eiqnetworks > Enterprise Security Analyzer > 2.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-29 | CVE-2007-5699 | Buffer Errors vulnerability in Eiqnetworks Enterprise Security Analyzer 2.5 Stack-based buffer overflow in eIQNetworks Enterprise Security Analyzer (ESA) 2.5 allows remote attackers to execute arbitrary code via certain data on TCP port 10616 that results in a long argument to the SEARCHREPORT command, a different vector than CVE-2007-2059. | 6.8 |
2007-04-18 | CVE-2007-2059 | Remote Security vulnerability in Eiqnetworks Enterprise Security Analyzer 2.5 Multiple buffer overflows in the ESA protocol implementation in eIQnetworks Enterprise Security Analyzer (ESA) 2.5 allow remote attackers to execute arbitrary code via a long parameter to the (1) DELETESEARCHFOLDER, (2) DELTASK, (3) HMGR_CHECKHOSTSCSV, (4) TASKUPDATEDUSER, (5) VERIFYUSERKEY, or (6) VERIFYPWD command. | 10.0 |
2007-01-13 | CVE-2007-0228 | Denial of Service vulnerability in Eiqnetworks Enterprise Security Analyzer 2.0/2.1/2.5 The DataCollector service in EIQ Networks Network Security Analyzer allows remote attackers to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) &LOGPATH& (6) &FWADELTA& (7) &FWALOG& (8) &SETSYNCHRONOUS& (9) &SETPRGFILE&, or (10) &SETREPLYPORT& string to TCP port 10618, which triggers a NULL pointer dereference. | 5.0 |