Lucene search

PRIOn knowledge basePRION:CVE-2007-2281

HistoryDec 18, 2009 - 7:30 p.m.

Integer overflow

2009-12-1819:30:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.111 Low

EPSS

Percentile

95.0%

JSON

Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via a large value in the size parameter.

CPENameOperatorVersion
openview_storage_data_protectoreq6.0
openview_storage_data_protectoreq5.50

CPE	Name	Operator	Version
	openview_storage_data_protector	eq	6.0
	openview_storage_data_protector	eq	5.50

References

dvlabs.tippingpoint.com/advisory/TPTI-09-15

securitytracker.com/id?1023361

www.securityfocus.com/bid/37386

www.vupen.com/english/advisories/2009/3594

marc.info/?l=bugtraq&m=126106261622540&w=2

7.9 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.111 Low

EPSS

Percentile

95.0%

JSON

Related for PRION:CVE-2007-2281