CVE-2007-1173

Published: May 16, 2007Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Multiple buffer overflows in the CentennialIPTransferServer service (XFERWAN.EXE), as used by (1) Centennial Discovery 2006 Feature Pack 1, (2) Numara Asset Manager 8.0, and (3) Symantec Discovery 6.5, allow remote attackers to execute arbitrary code via long strings in a crafted TCP packet.

Affected (3)

Products: Centennial: Discovery · Numara: Asset Manager · Symantec: Discovery

1 product

1 product

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Centennial Discovery	Version 2006_featurepack1
Numara Asset Manager	Version 8.0
Symantec Discovery	Version 6.5

References (26)

http://osvdb.org/35076

Source: PSIRT-CNA@flexerasoftware.com

http://secunia.com/advisories/24090

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/advisories/24281

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/advisories/24329

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/secunia_research/2007-41/advisory/

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/secunia_research/2007-42/advisory/

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://secunia.com/secunia_research/2007-43/advisory/

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://www.securityfocus.com/bid/24002

Source: PSIRT-CNA@flexerasoftware.com

http://www.securitytracker.com/id?1018072

Source: PSIRT-CNA@flexerasoftware.com

http://www.vupen.com/english/advisories/2007/1832

Source: PSIRT-CNA@flexerasoftware.com

http://www.vupen.com/english/advisories/2007/1833

Source: PSIRT-CNA@flexerasoftware.com

http://www.vupen.com/english/advisories/2007/1834

Source: PSIRT-CNA@flexerasoftware.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/34313

Source: PSIRT-CNA@flexerasoftware.com

http://osvdb.org/35076

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24090

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/24281

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/24329

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/secunia_research/2007-41/advisory/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/secunia_research/2007-42/advisory/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/secunia_research/2007-43/advisory/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/24002

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1018072

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/1832

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/1833

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/1834

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/34313

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.