CVE-2007-3911
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-3911
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple heap-based buffer overflows in (1) clsscheduler.exe (aka scheduler client) and (2) srvscheduler.exe (aka scheduler server) in BakBone NetVault Reporter 3.5 before Update4 allow remote attackers to execute arbitrary code via long filename arguments in HTTP requests.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
BakBone NetVault报表管理器调度程序远程堆溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
NetVault是企业级的备份存储解决方案。 NetVault报表管理器监听于TCP 7978端口的调度程序客户端(clsscheduler.exe)和监听于TCP 7977端口的调度程序服务器(srvscheduler.exe)中存在堆溢出漏洞,如果处理了GET和POST请求的超长文件名参数的话,就可以触发这个溢出,导致以系统权限执行任意指令。 在搜索终止/空格字符(\r\t\n)时调度程序使用了一个堆块容纳数据,但没有对这个块执行边界检查,因此如果超长字符串不包含有任意上述字符的话,就可以触发堆溢出。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-3911
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-3911
请登录查看更多情报信息。
- http://www.zerodayinitiative.com/advisories/ZDI-07-044.htmlx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2007-3911
Same Patch Batch · n/a · 2007-07-30 · 50 CVEs total
| CVE-2007-4085 | AlstraSoft AskMe Pro 多个参数的SQL注入漏洞 | |
| CVE-2007-4092 | iFoto index.php 目录遍历漏洞 | |
| CVE-2007-4096 | Tor 多个漏洞和信息泄露错误 | |
| CVE-2007-4097 | Tor 多个漏洞和信息泄露错误 | |
| CVE-2007-4098 | Tor 多个漏洞和信息泄露错误 | |
| CVE-2007-4099 | Tor 多个漏洞和信息泄露错误 | |
| CVE-2007-3387 | Freedesktop Poppler 输入验证错误漏洞 | |
| CVE-2007-4095 | BSM Store Dependent Forums UserName Parameter SQL注入漏洞 | |
| CVE-2007-4087 | AlstraSoft Video Share 多个参数的远程攻击漏洞 | |
| CVE-2007-4086 | AlstraSoft Video Share 多个参数的SQL注入漏洞 | |
| CVE-2007-4088 | Vikingboard 多个跨站脚本攻击漏洞 | |
| CVE-2007-4084 | AlstraSoft Affiliate Network Pro 多个输入验证漏洞 | |
| CVE-2007-4083 | AlstraSoft AskMe Pro 多个跨站脚本漏洞 | |
| CVE-2007-4082 | AlstraSoft Article Manager Pro contact_author.php 跨站脚本漏洞 | |
| CVE-2007-4081 | AlstraSoft Affiliate Network Pro 多个输入验证漏洞 | |
| CVE-2007-4080 | AlstraSoft E-Friends index.php 跨站脚本漏洞 | |
| CVE-2007-4079 | AlstraSoft SMS Text Messaging Enterprise 多个跨站脚本攻击漏洞 | |
| CVE-2007-4078 | AlstraSoft Text Ads Enterprise 多个跨站脚本攻击漏洞 | |
| CVE-2007-4077 | AlstraSoft Video Share 多个跨站脚本漏洞 | |
| CVE-2007-4076 | Alisveris Sitesi Scripti Index.ASP SQL注入漏洞 |
Showing top 20 of 50 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2007-3911
No comments yet