Enterprise Security Analyzer CVE-2007-2059 Remote Security Vulnerability

Enterprise Security Analyzer CVE-2007-2059 Remote Security Vulnerability

Enterprise Security Analyzer is prone to a remote security vulnerability. Multiple buffer overflows in the ESA protocol implementation in eIQnetworks Enterprise Security Analyzer (ESA) 2.5 allow remote attackers to execute arbitrary code via a long parameter to the (1) DELETESEARCHFOLDER, (2) DELTASK, (3) HMGR_CHECKHOSTSCSV, (4) TASKUPDATEDUSER, (5) VERIFYUSERKEY, or (6) VERIFYPWD command.