Unrated severityNVD Advisory· Published Apr 27, 2007· Updated Jun 16, 2026
CVE-2007-2343
CVE-2007-2343
Description
Stack-based buffer overflow in the TFTPD component in Enterasys NetSight Console 2.1 and NetSight Inventory Manager 2.1, and possibly earlier, allows remote attackers to execute arbitrary code via crafted request packets that contain long file names.
Affected products
4cpe:2.3:a:enterasys:netsight_console:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:enterasys:netsight_console:*:*:*:*:*:*:*:*range: <=2.1
- (no CPE)range: <=2.1
cpe:2.3:a:enterasys:netsight_inventory_manager:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:enterasys:netsight_inventory_manager:*:*:*:*:*:*:*:*range: <=2.1
- (no CPE)range: <=2.1
Patches
Vulnerability mechanics
References
6- www.enterasys.com/pub/NetSight/Patches/SP1/NetSight_SP1.pdfnvdPatch
- secunia.com/advisories/24764nvdExploitVendor Advisory
- labs.idefense.com/intelligence/vulnerabilities/display.phpnvdVendor Advisory
- osvdb.org/34627nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/1271nvd
News mentions
0No linked articles in our index yet.