6 matches found
HP LeftHand Virtual SAN Appliance hydra Ping Hostname Overflow
Added: 09/19/2013 CVE: CVE-2012-3285 BID: 57754 OSVDB: 89919 Background HP LeftHand Virtual SAN Appliance VSA software is a VMware certified SAN/storage device and virtual appliance that provides complete SAN functionality for VMware Infrastructure without external SAN hardware. Problem HP LeftHa...
HP LeftHand Virtual SAN Appliance hydra Ping Hostname Overflow
Added: 09/19/2013 CVE: CVE-2012-3285 BID: 57754 OSVDB: 89919 Background HP LeftHand Virtual SAN Appliance VSA software is a VMware certified SAN/storage device and virtual appliance that provides complete SAN functionality for VMware Infrastructure without external SAN hardware. Problem HP LeftHa...
HP LeftHand Virtual SAN Appliance hydra Ping Hostname Overflow
Added: 09/19/2013 CVE: CVE-2012-3285 BID: 57754 OSVDB: 89919 Background HP LeftHand Virtual SAN Appliance VSA software is a VMware certified SAN/storage device and virtual appliance that provides complete SAN functionality for VMware Infrastructure without external SAN hardware. Problem HP LeftHa...
HP LeftHand Virtual SAN Appliance hydra Ping Hostname Overflow
Added: 09/19/2013 CVE: CVE-2012-3285 BID: 57754 OSVDB: 89919 Background HP LeftHand Virtual SAN Appliance VSA software is a VMware certified SAN/storage device and virtual appliance that provides complete SAN functionality for VMware Infrastructure without external SAN hardware. Problem HP LeftHa...
HP LeftHand Virtual SAN Appliance hydra Ping Processing Buffer Overflow (CVE-2012-3285)
A stack buffer overflow vulnerability exists in HP LeftHand Virtual SAN Appliance. The vulnerability is due to insufficient input validation on target hostname or IP address of a Ping request sent to the hydra service which listens by default on port 13838/TCP. A remote attacker can exploit this...
CVE-2012-3285
HP LeftHand Virtual SAN Appliance hydra service (LHNModParam) on TCP port 13838 is affected by a stack buffer overflow in versions prior to 10.0. This allows a remote attacker to execute arbitrary code as root due to insufficient input length validation for the hostname during a Ping request. Rem...