Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2608

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2011-2608
Last Modified 25 Aug 2011 12:00:00
Published 01 Jul 2011 06:55:02
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-2608

Summary

ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command.

Vulnerable Systems

Application

  • Hp Openview Performance Agent 4.70

  • Hp Openview Performance Agent 5.0

  • Hp Operations Agent 11.0

  • Hp Operations Agent 8.53

  • Hp Operations Agent 8.60.005

  • Hp Operations Agent 8.60.006

  • Hp Operations Agent 8.60.007

  • Hp Operations Agent 8.60.008

  • Hp Operations Agent 8.60.501


References

XF - hp-operations-ovbbccb-file-deletion(68269)

BID - 48481

SECTRACK - 1025715

SECUNIA - 45079

HP - HPSBMU02691

HP - SSRT100483

MISC - http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt


Last Updated: 27 May 2016 10:57:03