Unrated severityNVD Advisory· Published Apr 27, 2007· Updated Apr 23, 2026

CVE-2007-2343

Description

Stack-based buffer overflow in the TFTPD component in Enterasys NetSight Console 2.1 and NetSight Inventory Manager 2.1, and possibly earlier, allows remote attackers to execute arbitrary code via crafted request packets that contain long file names.

Affected products

Enterasys/Netsight Console
cpe:2.3:a:enterasys:netsight_console:*:*:*:*:*:*:*:*
Range: <=2.1
Enterasys/Netsight Inventory Manager
cpe:2.3:a:enterasys:netsight_inventory_manager:*:*:*:*:*:*:*:*
Range: <=2.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.enterasys.com/pub/NetSight/Patches/SP1/NetSight_SP1.pdfnvdPatch
secunia.com/advisories/24764nvdExploitVendor Advisory
labs.idefense.com/intelligence/vulnerabilities/display.phpnvdVendor Advisory
osvdb.org/34627nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2007/1271nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000