CVE-2011-1867

2011-07-1120:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve

2011

1867

buffer overflow

inodemngchecker.exe

user access manager

uam

endpoint admission defense

ead

hp intelligent management center

remote code execution

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.854 High

EPSS

Percentile

98.5%

JSON

Stack-based buffer overflow in iNodeMngChecker.exe in the User Access Manager (UAM) 5.0 before SP1 E0101P03 and Endpoint Admission Defense (EAD) 5.0 before SP1 E0101P03 components in HP Intelligent Management Center (aka iNode Management Center) allows remote attackers to execute arbitrary code via a 0x0A0BF007 packet.

CPENameOperatorVersion
hp:user_access_managerhp user access managereq5.0
hp:endpoint_admission_defensehp endpoint admission defenseeq5.0
hp:intelligent_management_centerhp intelligent management centereq*

CPE	Name	Operator	Version
hp:user_access_manager	hp user access manager	eq	5.0
hp:endpoint_admission_defense	hp endpoint admission defense	eq	5.0
hp:intelligent_management_center	hp intelligent management center	eq	*