Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4791

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-4791
Last Modified 28 Nov 2012 12:00:00
Published 02 Feb 2012 11:05:51
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4791

Summary

DBServer.exe in HP Data Protector Media Operations 6.11 and earlier allows remote attackers to execute arbitrary code via a crafted request containing a large value in a length field.

Vulnerable Systems

Application

  • Hp Data Protector Media Operations 5.0

  • Hp Data Protector Media Operations 5.1

  • Hp Data Protector Media Operations 5.5

  • Hp Data Protector Media Operations 6.10

  • Hp Data Protector Media Operations 6.11


References

MISC - http://zerodayinitiative.com/advisories/ZDI-11-112/

HP - SSRT100280

HP - HPSBMU02739


Last Updated: 27 May 2016 10:57:24