CVE-2007-2417

Heap-based buffer overflow in _mprosrv.exe in Progress Software Progress 9.1E and OpenEdge 10.1x, as used by the RSA Authentication Manager 6.0 and 6.1, SecurID Appliance 2.0, ACE/Server 5.2, and possibly other products, allows remote attackers to execute arbitrary code via crafted packets. NOTE: this issue might overlap CVE-2007-3491.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:h:rsa:securid:2.0:*:*:*:*:*:*:*
OR cpe:2.3:a:progress:openedge:10.1a:*:*:*:*:*:*:*
cpe:2.3:a:progress:openedge:10.1b:*:*:*:*:*:*:*
cpe:2.3:a:progress:progress:9.1e:*:*:*:*:*:*:*
cpe:2.3:a:rsa:ace_server:5.2:*:*:*:*:*:*:*

History

21 Nov 2024, 00:30

Type Values Removed Values Added
References () http://dvlabs.tippingpoint.com/advisory/TPTI-07-12 - Patch, Vendor Advisory () http://dvlabs.tippingpoint.com/advisory/TPTI-07-12 - Patch, Vendor Advisory
References () http://osvdb.org/37934 - () http://osvdb.org/37934 -
References () http://secunia.com/advisories/26058 - Patch, Vendor Advisory () http://secunia.com/advisories/26058 - Patch, Vendor Advisory
References () http://secunia.com/advisories/26067 - Patch, Vendor Advisory () http://secunia.com/advisories/26067 - Patch, Vendor Advisory
References () http://www.securityfocus.com/archive/1/473623/100/0/threaded - () http://www.securityfocus.com/archive/1/473623/100/0/threaded -
References () http://www.securityfocus.com/bid/24675 - () http://www.securityfocus.com/bid/24675 -
References () http://www.securitytracker.com/id?1018389 - () http://www.securitytracker.com/id?1018389 -
References () http://www.vupen.com/english/advisories/2007/2530 - () http://www.vupen.com/english/advisories/2007/2530 -
References () http://www.vupen.com/english/advisories/2007/2531 - () http://www.vupen.com/english/advisories/2007/2531 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/35385 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/35385 -

Information

Published : 2007-07-15 21:30

Updated : 2024-11-21 00:30


NVD link : CVE-2007-2417

Mitre link : CVE-2007-2417

CVE.ORG link : CVE-2007-2417


JSON object : View

Products Affected

rsa

  • securid
  • ace_server

progress

  • openedge
  • progress