Versions of HP Intelligent Management Center earlier than 5.0 E0101-L02 are potentially affected by multiple vulnerabilities :
A stack-based buffer overflow vulnerability exists in the ‘img.exe’ component. (CVE-2011-1848)
An unspecified vulnerability in the ‘tftpserver.exe’ component exists which could allow an attacker to create arbitrary files on the server. (CVE-2011-1849)
A stack-based buffer overflow vulnerability exists in the ‘dbman.exe’ component. (CVE-2011-1850)
Multiple buffer overflow vulnerabilities exist in the ‘tftpserver.exe’ component. (CVE-2011-1851, CVE-2011-1852, CVE-2011-1853)
A use-after-free vulnerability exists in the ‘imcsyslogdm.exe’ component. (CVE-2011-1854)
Binary data 5927.prm
Vendor | Product | Version | CPE |
---|---|---|---|
hp | intelligent_management_center | cpe:/a:hp:intelligent_management_center |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1848
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1849
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1850
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1851
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1852
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1853
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1854
www.zerodayinitiative.com/advisories/ZDI-11-160
www.zerodayinitiative.com/advisories/ZDI-11-161
www.zerodayinitiative.com/advisories/ZDI-11-162
www.zerodayinitiative.com/advisories/ZDI-11-163
www.zerodayinitiative.com/advisories/ZDI-11-164
www.zerodayinitiative.com/advisories/ZDI-11-165
www.zerodayinitiative.com/advisories/ZDI-11-166