Vulnerability Details CVE-2007-4349
The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.5%
CVSS Severity
CVSS v2 Score 4.3
References
- http://marc.info/?l=bugtraq&m=122876677518654&w=2
- http://marc.info/?l=bugtraq&m=122876827120961&w=2
- http://marc.info/?l=bugtraq&m=122876827120961&w=2
- http://secunia.com/advisories/27054
- http://secunia.com/secunia_research/2007-83/
- http://securityreason.com/securityalert/4501
- http://www.securityfocus.com/archive/1/497648/100/0/threaded
- http://www.securityfocus.com/bid/31860
- http://www.securitytracker.com/id?1021092
- http://www.vupen.com/english/advisories/2008/2888
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46028
- http://marc.info/?l=bugtraq&m=122876677518654&w=2
- http://marc.info/?l=bugtraq&m=122876827120961&w=2
- http://marc.info/?l=bugtraq&m=122876827120961&w=2
- http://secunia.com/advisories/27054
- http://secunia.com/secunia_research/2007-83/
- http://securityreason.com/securityalert/4501
- http://www.securityfocus.com/archive/1/497648/100/0/threaded
- http://www.securityfocus.com/bid/31860
- http://www.securitytracker.com/id?1021092
- http://www.vupen.com/english/advisories/2008/2888
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46028
Products affected by CVE-2007-4349
-
cpe:2.3:a:hp:openview_performance_agent:c.04.60
-
cpe:2.3:a:hp:openview_performance_agent:c.04.61
-
cpe:2.3:a:hp:openview_reporter:3.70
-
cpe:2.3:a:hp:performance_agent:4.70
-
cpe:2.3:a:hp:reporter:3.8