Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6195

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-6195
Last Modified 13 May 2011 12:00:00
Published 14 Dec 2007 08:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6195

Summary

Buffer overflow in the sw_rpc_agent_init function in swagentd in Software Distributor (SD), and possibly other DCE applications, in HP HP-UX B.11.11 and B.11.23 allows remote attackers to execute arbitrary code or cause a denial of service via malformed arguments in an opcode 0x04 DCE RPC request.

Vulnerable Systems

Operating System

  • Hp-ux 11.11

  • Hp-ux 11.23


References

BID - 26855

XF - hpux-dce-unspecified-dos(39018)

HP - SSRT071451

MISC - http://www.zerodayinitiative.com/advisories/ZDI-07-079.html

VUPEN - ADV-2007-4220

SECTRACK - 1019098

BUGTRAQ - 20071217 ZDI-07-079: Hewlett-Packard HP-UX swagentd Buffer Overflow Vulnerability

SECUNIA - 28087

HP - HPSBUX02294


Last Updated: 27 May 2016 10:47:27