CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-3695

Buffer overflow in LICRCMD.EXE in CA ERwin Process Modeler (formerly AllFusion Process Modeler) 7.1 allows attackers to execute arbitrary code via a long filename. NOTE: the researcher does not suggest any circumstances in which the filename would come from an untrusted source, and therefore perhaps the issue does not cross privilege boundaries and should not be included in CVE.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.4%

CVSS Severity

CVSS v2 Score 10.0

References

http://osvdb.org/39597
http://www.eleytt.com/advisories/eleytt_ALLFUSIONLICRCMD.pdf
http://www.securityfocus.com/bid/24817
http://osvdb.org/39597
http://www.eleytt.com/advisories/eleytt_ALLFUSIONLICRCMD.pdf
http://www.securityfocus.com/bid/24817

Products affected by CVE-2007-3695

Broadcom » Erwin Process Modeler » Version: 7.1

cpe:2.3:a:broadcom:erwin_process_modeler:7.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-3695

Products

Pricing

Contact Us