10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.965 High
EPSS
Percentile
99.5%
Added: 08/06/2012
CVE: CVE-2012-2019
BID: 54362
OSVDB: 83673
HP Operations Agents is a fault and performance monitoring solution for servers.
A buffer overflow vulnerability in the **coda.exe**
process, which listens on a random TCP port, could allow remote attackers to execute arbitrary code by sending a specially crafted GET request.
Apply the patch referenced in HPSBMU02796 SSRT100594.
<http://www.zerodayinitiative.com/advisories/ZDI-12-114/>
Exploit works on HP Operations Agent 11.00.
Windows