Stack-Based Buffer Overflow in eScan Product by MicroWorld Technologies
CVE-2007-2687

Currently unrated

Key Information:

Vendor: Microworld Technologies
Status: Escan
Vendor: CVE Published:; 24 May 2007

🔔 Create Microworld Technologies Vulnerability Alert

What is CVE-2007-2687?

A stack-based buffer overflow vulnerability exists in the MicroWorld Agent service (MWAGENT.EXE) in eScan products prior to version 9.0.718.1. This vulnerability allows remote attackers to send specially crafted commands, potentially enabling them to execute arbitrary code on affected systems. The issue arises due to improper handling of command input, leading to a memory corruption situation. Organizations using vulnerable versions are recommended to upgrade to the latest versions to mitigate this risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/34457

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/469347/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/secunia_research/2007-54/advisory/

x_refsource_MISC

EPSS Score

23% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 24, 2007
Vulnerability Reserved
May 15, 2007