Lucene search
SAINT CorporationSAINT:B4EBC4071B1A0845ECB3522834CBA1BEHistoryAug 20, 2012 - 12:00 a.m.
HP Operations Agent Opcode 0x8c vulnerability
2012-08-2000:00:00
SAINT Corporation
download.saintcorporation.com
13
0.948 High
EPSS
Percentile
99.3%
Added: 08/20/2012
CVE: CVE-2012-2020
BID: 54362
OSVDB: 83674
Background
HP Operations Agents is a fault and performance monitoring solution for servers.
Problem
A buffer overflow vulnerability in the **coda.exe** process, which listens on a random TCP port, could allow remote attackers to execute arbitrary code by sending a specially crafted GET request.
Resolution
Apply the patch referenced in HPSBMU02796 SSRT100594.
References
<http://www.zerodayinitiative.com/advisories/ZDI-12-115/>
Limitations
This exploit has been tested against HP Operations Agent 11.00 on Windows Server 2003 SP2 English (DEP OptOut).
Platforms
Windows
Related
cve
cve
CVE-2012-2020
2012-07-11 04:54:00
saint
saint
HP Operations Agent Opcode 0x8c vulnerability
2012-08-20 00:00:00
HP Operations Agent Opcode 0x8c vulnerability
2012-08-20 00:00:00
HP Operations Agent Opcode 0x8c vulnerability
2012-08-20 00:00:00
prion
prion
Design/Logic Flaw
2012-07-11 04:54:00
securityvulns
securityvulns
ZDI-12-115 : HP OpenView Performance Agent coda.exe Opcode 0x8C Remote Code Execution Vulnerability
2012-07-16 00:00:00
HP Operations Agent code execution
2012-07-16 00:00:00
cvelist
cvelist
CVE-2012-2020
2022-10-03 16:15:35
packetstorm
packetstorm
HP Operations Agent Opcode coda.exe 0x8c Buffer Overflow
2012-10-28 00:00:00
zdi
zdi