← Retour aux CVEs
CVE-2007-2417
N/ADescription
Heap-based buffer overflow in _mprosrv.exe in Progress Software Progress 9.1E and OpenEdge 10.1x, as used by the RSA Authentication Manager 6.0 and 6.1, SecurID Appliance 2.0, ACE/Server 5.2, and possibly other products, allows remote attackers to execute arbitrary code via crafted packets. NOTE: this issue might overlap CVE-2007-3491.
Details CVE
Score CVSS v3.1N/A
Publie7/15/2007
Derniere modification4/23/2026
Sourcenvd
Observations honeypot0
Produits affectes
progress:openedgeprogress:progressrsa:ace_serverrsa:securid
References
http://dvlabs.tippingpoint.com/advisory/TPTI-07-12(cve@mitre.org)
http://osvdb.org/37934(cve@mitre.org)
http://secunia.com/advisories/26058(cve@mitre.org)
http://secunia.com/advisories/26067(cve@mitre.org)
http://www.securityfocus.com/archive/1/473623/100/0/threaded(cve@mitre.org)
http://www.securityfocus.com/bid/24675(cve@mitre.org)
http://www.securitytracker.com/id?1018389(cve@mitre.org)
http://www.vupen.com/english/advisories/2007/2530(cve@mitre.org)
http://www.vupen.com/english/advisories/2007/2531(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/35385(cve@mitre.org)
http://dvlabs.tippingpoint.com/advisory/TPTI-07-12(af854a3a-2127-422b-91ae-364da2661108)
http://osvdb.org/37934(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/26058(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/26067(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/473623/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/24675(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id?1018389(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2007/2530(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2007/2531(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/35385(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.