Lucene search
Luigi AuriemmaAbdulAziz HaririZDI-11-162HistoryMay 10, 2011 - 12:00 a.m.
HP 3COM/H3C Intelligent Management Center dbman sprintf Remote Code Execution Vulnerability
2011-05-1000:00:00
Luigi AuriemmaAbdulAziz Hariri
www.zerodayinitiative.com
16
EPSS
0.817
Percentile
98.4%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP 3com/H3C Intelligent Management Center. Authentication is not required to exploit this vulnerability. The flaw exists within the dbman.exe component which listens by default on UDP port 2810. When logging received actions to dbman_debug.log sprintf is used to build the log message. The process does not properly verify the destination buffer on the stack is of sufficient size to handle the newly created string. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the SYSTEM user.
Related
prion
prion
Stack overflow
2011-05-13 17:05:00
nvd
nvd
CVE-2011-1850
2011-05-13 17:05:44
checkpoint_advisories
checkpoint_advisories
HP Intelligent Management Center dbman Buffer Overflow (CVE-2011-1850)
2011-11-15 00:00:00
securityvulns
securityvulns
ZDI-11-162: HP 3COM/H3C Intelligent Management Center dbman sprintf Remote Code Execution Vulnerability
2011-05-11 00:00:00
[security bulletin] HPSBGN02680 SSRT100361 rev.1 - HP Intelligent Management Center (IMC), Remote Execution of Arbitrary Code
2011-05-11 00:00:00
HP Intelligent Management Center multiple security vulnerabilities
2011-05-11 00:00:00
cvelist
cvelist
CVE-2011-1850
2011-05-13 17:00:00
cve
cve
CVE-2011-1850
2011-05-13 17:05:44
nessus
nessus
HP Intelligent Management Center Multiple Vulnerabilities
2011-06-08 00:00:00
HP Intelligent Management Center < 5.0 E0101-L02 Multiple Vulnerabilities
2011-05-24 00:00:00
HP Intelligent Management Center < 5.0 E0101-L02 Multiple Vulnerabilities
2011-05-20 00:00:00