Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-1005
HistoryMar 02, 2007 - 9:18 p.m.

CVE-2007-1005

2007-03-0221:18:00
mitre
web.nvd.nist.gov
28
2
cve-2007-1005
buffer overflow
sw3eng.exe
eid engine
ca etrust
denial of service
remote administration port

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.9

Confidence

High

EPSS

0.313

Percentile

97.0%

JSON

Heap-based buffer overflow in SW3eng.exe in the eID Engine service in CA (formerly Computer Associates) eTrust Intrusion Detection 3.0.5.57 and earlier allows remote attackers to cause a denial of service (application crash) via a long key length value to the remote administration port (9191/tcp).

Affected configurations

Nvd
Node
broadcometrust_intrusion_detectionMatch3.0
OR
caetrust_intrusion_detectionMatch2.0sp1
OR
caetrust_intrusion_detectionMatch3.0sp1
VendorProductVersionCPE
broadcometrust_intrusion_detection3.0cpe:2.3:a:broadcom:etrust_intrusion_detection:3.0:*:*:*:*:*:*:*
caetrust_intrusion_detection2.0cpe:2.3:a:ca:etrust_intrusion_detection:2.0:sp1:*:*:*:*:*:*
caetrust_intrusion_detection3.0cpe:2.3:a:ca:etrust_intrusion_detection:3.0:sp1:*:*:*:*:*:*

Social References

More

Related

checkpoint_advisories 1
securityvulns 2
prion 1
cvelist 1
nessus 1
nvd 1
checkpoint_advisories
checkpoint_advisories
CA eTrust Intrusion Detection Encryption Key Handling Denial of Service (CVE-2007-1005)
2009-10-26 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 02.27.07: Computer Associates eTrust Intrusion Detection Denial of Service Vulnerability
2007-02-28 00:00:00
Computer Associates eTrust IDS DoS
2007-02-28 00:00:00
prion
prion
Heap overflow
2007-03-02 21:18:00
cvelist
cvelist
CVE-2007-1005
2007-03-02 21:00:00
nessus
nessus
CA eTrust Intrusion Detection System Key Exchange Remote DoS
2007-02-28 00:00:00
nvd
nvd
CVE-2007-1005
2007-03-02 21:18:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.9

Confidence

High

EPSS

0.313

Percentile

97.0%

JSON
Related for CVE-2007-1005
checkpoint_advisories1securityvulns2prion1cvelist1nessus1nvd1