VYPR
Unrated severityNVD Advisory· Published Oct 31, 2007· Updated Jun 16, 2026

CVE-2007-2957

CVE-2007-2957

Description

Integer overflow in McAfee E-Business Server before 8.5.3 for Solaris, and before 8.1.2 for Linux, HP-UX, and AIX, allows remote attackers to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.

Affected products

5
  • cpe:2.3:a:mcafee:e-business_server:*:*:aix:*:*:*:*:*+ 4 more
    • cpe:2.3:a:mcafee:e-business_server:*:*:aix:*:*:*:*:*range: <=8.1.1
    • cpe:2.3:a:mcafee:e-business_server:*:*:hpux:*:*:*:*:*range: <=8.1.1
    • cpe:2.3:a:mcafee:e-business_server:*:*:linux:*:*:*:*:*range: <=8.1.1
    • cpe:2.3:a:mcafee:e-business_server:*:*:solaris:*:*:*:*:*range: <=8.5.2
    • (no CPE)range: <8.5.3 (Solaris), <8.1.2 (Linux, HP-UX, AIX)

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.