nvd-json-data-feeds/CVE-2007/CVE-2007-43xx/CVE-2007-4349.json

{
  "id": "CVE-2007-4349",
  "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com",
  "published": "2008-10-23T22:00:01.027",
  "lastModified": "2018-10-30T16:25:48.933",
  "vulnStatus": "Modified",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference."
    },
    {
      "lang": "es",
      "value": "El servicio Shared Trace (tambi\u00e9n se conoce como OVTrace) en HP Performance Agent versi\u00f3n C.04.70 (4.70), HP OpenView Performance Agent versiones C.04.60 y C.04.61, HP Reporter versi\u00f3n 3.8 y HP OpenView Reporter versi\u00f3n 3.7 (Informe 3.70), permite a los atacantes remotos causar una denegaci\u00f3n de servicio por medio de una serie no especificada de peticiones RPC (tambi\u00e9n se conoce como Mensajes de Eventos de Rastreo) que desencadena un acceso de memoria fuera de l\u00edmites, relacionado con una referencia de objeto err\u00f3nea."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "MEDIUM",
          "authentication": "NONE",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.3
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:hp:openview_performance_agent:c.04.60:*:*:*:*:*:*:*",
              "matchCriteriaId": "9374AB08-64F6-4376-BF01-652E88A7E050"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:hp:openview_performance_agent:c.04.61:*:*:*:*:*:*:*",
              "matchCriteriaId": "15053C63-0407-422A-9E7B-591E336D6121"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:hp:openview_reporter:3.70:*:*:*:*:*:*:*",
              "matchCriteriaId": "380F0F94-E4D6-4630-AC10-C4D8922760A4"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:hp:performance_agent:4.70:*:*:*:*:*:*:*",
              "matchCriteriaId": "4B769539-D927-4086-9160-F162488F5337"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:hp:reporter:3.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "2BCEDB40-6EC3-4F4F-A2E5-5B223AA58DDF"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://marc.info/?l=bugtraq&m=122876677518654&w=2",
      "source": "PSIRT-CNA@flexerasoftware.com"
    },
    {
      "url": "http://marc.info/?l=bugtraq&m=122876827120961&w=2",
      "source": "PSIRT-CNA@flexerasoftware.com"
    },
    {
      "url": "http://secunia.com/advisories/27054",
      "source": "PSIRT-CNA@flexerasoftware.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://secunia.com/secunia_research/2007-83/",
      "source": "PSIRT-CNA@flexerasoftware.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://securityreason.com/securityalert/4501",
      "source": "PSIRT-CNA@flexerasoftware.com"
    },
    {
      "url": "http://www.securityfocus.com/archive/1/497648/100/0/threaded",
      "source": "PSIRT-CNA@flexerasoftware.com"
    },
    {
      "url": "http://www.securityfocus.com/bid/31860",
      "source": "PSIRT-CNA@flexerasoftware.com",
      "tags": [
        "Patch"
      ]
    },
    {
      "url": "http://www.securitytracker.com/id?1021092",
      "source": "PSIRT-CNA@flexerasoftware.com"
    },
    {
      "url": "http://www.vupen.com/english/advisories/2008/2888",
      "source": "PSIRT-CNA@flexerasoftware.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46028",
      "source": "PSIRT-CNA@flexerasoftware.com"
    }
  ]
}