Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1733

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-1733
Last Modified 06 Sep 2011 11:16:28
Published 07 May 2011 03:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1733

Summary

Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed HPFGConfig message.

Vulnerable Systems

Application

  • Hp Openview Storage Data Protector 6.00

  • Hp Openview Storage Data Protector 6.10

  • Hp Openview Storage Data Protector 6.11


References

MISC - http://zerodayinitiative.com/advisories/ZDI-11-149/

XF - openview-storage-code-execution(67206)

SECTRACK - 1025454

BID - 47638

BUGTRAQ - 20110429 ZDI-11-149: HP Data Protector Backup Client Service HPFGConfig Remote Code Execution Vulnerability

SECUNIA - 44402

OSVDB - 72192

HP - HPSBMA02668

HP - SSRT100474


Last Updated: 27 May 2016 10:56:25