Unrated severityNVD Advisory· Published Mar 30, 2007· Updated Apr 23, 2026

CVE-2007-1770

Description

Buffer overflow in the ArcSDE service (giomgr) in Environmental Systems Research Institute (ESRI) ArcGIS before 9.2 Service Pack 2, when using three tiered ArcSDE configurations, allows remote attackers to cause a denial of service (giomgr crash) and execute arbitrary code via long parameters in crafted requests.

Affected products

Esri/Arcsde8 versions
cpe:2.3:a:esri:arcsde:8.3:-:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:esri:arcsde:8.3:-:*:*:*:*:*:*
- cpe:2.3:a:esri:arcsde:8.3:sp1:*:*:*:*:*:*
- cpe:2.3:a:esri:arcsde:9.0:-:*:*:*:*:*:*
- cpe:2.3:a:esri:arcsde:9.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:esri:arcsde:9.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:esri:arcsde:9.1:-:*:*:*:*:*:*
- cpe:2.3:a:esri:arcsde:9.1:sp1:*:*:*:*:*:*
- cpe:2.3:a:esri:arcsde:9.1:sp2:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.esri.com/index.cfmnvdVendor Advisory
support.esri.com/index.cfmnvdVendor Advisory
support.esri.com/index.cfmnvdVendor Advisory
www.securityfocus.com/bid/23175nvdBroken LinkThird Party AdvisoryVDB Entry
www.securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
www.vupen.com/english/advisories/2007/1140nvdBroken LinkThird Party Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/33282nvdThird Party AdvisoryVDB Entry
exchange.xforce.ibmcloud.com/vulnerabilities/33457nvdThird Party AdvisoryVDB Entry
labs.idefense.com/intelligence/vulnerabilities/display.phpnvdBroken Link
secunia.com/advisories/24639nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.021
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000