Lucene search

[email protected]CVE-2011-2331

HistoryJun 02, 2011 - 8:55 p.m.

CVE-2011-2331

2011-06-0220:55:04

CWE-189

[email protected]

web.nvd.nist.gov

cve-2011-2331

hp intelligent management center

imc

remote code execution

integer overflow

img.exe

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.174 Low

EPSS

Percentile

96.1%

JSON

Integer overflow in img.exe in HP Intelligent Management Center (IMC) allows remote attackers to execute arbitrary code via a crafted length value in an a packet that triggers a heap-based buffer overflow, possibly related to an “recv” field.

Affected configurations

NVD

Node

hpintelligent_management_center

CPENameOperatorVersion
hp:intelligent_management_centerhp intelligent management centereq*

CPE	Name	Operator	Version
hp:intelligent_management_center	hp intelligent management center	eq	*

References

secunia.com/advisories/44748

securitytracker.com/id?1025583

www.securityfocus.com/bid/48065

zerodayinitiative.com/advisories/ZDI-11-170/

exchange.xforce.ibmcloud.com/vulnerabilities/67738

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.174 Low

EPSS

Percentile

96.1%

JSON

Related for CVE-2011-2331

cvelist1 prion1 nvd1