Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1866

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-1866
Last Modified 21 Sep 2011 11:31:02
Published 01 Jul 2011 06:55:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1866

Summary

Buffer overflow in omniinet.exe in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to execute arbitrary code via a crafted request, related to the EXEC_CMD functionality.

Vulnerable Systems

Application

  • Hp Openview Storage Data Protector 6.00

  • Hp Openview Storage Data Protector 6.10

  • Hp Openview Storage Data Protector 6.11

  • Hp Openview Storage Data Protector 6.20


References

XF - hp-openview-data-ce(68297)

BID - 48488

BUGTRAQ - 20110629 CORE-2011-0606: HP Data Protector EXEC_CMD Buffer Overflow Vulnerability

EXPLOIT-DB - 17461

MISC - http://www.coresecurity.com/content/HP-Data-Protector-EXECCMD-Vulnerability

SECTRACK - 1025731

SREASON - 8289

SECUNIA - 45100

HP - HPSBMU02686

HP - SSRT100541


Last Updated: 27 May 2016 10:56:50