Multiple buffer overflows in the CentennialIPTransferServer service (XFERWAN.EXE), as used by (1) Centennial Discovery 2006 Feature Pack 1, (2) Numara Asset Manager 8.0, and (3) Symantec Discovery 6.5, allow remote attackers to execute arbitrary code via long strings in a crafted TCP packet.
osvdb.org/35076
secunia.com/advisories/24090
secunia.com/advisories/24281
secunia.com/advisories/24329
secunia.com/secunia_research/2007-41/advisory/
secunia.com/secunia_research/2007-42/advisory/
secunia.com/secunia_research/2007-43/advisory/
www.securityfocus.com/bid/24002
www.securitytracker.com/id?1018072
www.vupen.com/english/advisories/2007/1832
www.vupen.com/english/advisories/2007/1833
www.vupen.com/english/advisories/2007/1834
exchange.xforce.ibmcloud.com/vulnerabilities/34313