Stack-Based Buffer Overflow in BMC Patrol PerformAgent
CVE-2007-2136

Currently unrated

Key Information:

Vendor

Bmc

Status
Patrol Perform Agent
Vendor
CVE Published:
22 April 2007

What is CVE-2007-2136?

A stack-based buffer overflow exists in the bgs_sdservice.exe component of BMC Patrol PerformAgent. This vulnerability can be exploited by remote attackers to execute arbitrary code by connecting to TCP port 10128 and sending crafted XDR data that is inadequately handled. Successful exploitation may lead to unauthorized operations on the affected system, making it imperative for users to secure their installations.

References

http://securityreason.com/securityalert/2598
third-party-advisoryx_refsource_SREASON
http://www.vupen.com/english/advisories/2007/1457
vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/33745
vdb-entryx_refsource_XF

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.