Lucene search
Luigi AuriemmaZDI-11-163HistoryMay 10, 2011 - 12:00 a.m.
HP 3COM/H3C Intelligent Management Center tftpserver mode Remote Code Execution Vulnerability
2011-05-1000:00:00
Luigi Auriemma
www.zerodayinitiative.com
9
EPSS
0.817
Percentile
98.4%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP 3com/H3C Intelligent Management Center. Authentication is not required to exploit this vulnerability. The flaw exists within the tftpserver.exe component which listens by default on UDP port 69. When handling the transfer mode field this value is passed through toupper before being stored in a local buffer for string comparison. The process does not properly verify the destination buffer on the stack is sufficient size to handle the newly created string. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the SYSTEM user.
Related
checkpoint_advisories
checkpoint_advisories
cvelist
cvelist
CVE-2011-1851
2011-05-13 17:00:00
securityvulns
securityvulns
prion
prion
Stack overflow
2011-05-13 17:05:00
nvd
nvd
CVE-2011-1851
2011-05-13 17:05:44
cve
cve
CVE-2011-1851
2011-05-13 17:05:44
nessus
nessus
HP Intelligent Management Center TFTP Multiple Vulnerabilities
2011-06-07 00:00:00
HP Intelligent Management Center < 5.0 E0101-L02 Multiple Vulnerabilities
2011-05-24 00:00:00
HP Intelligent Management Center < 5.0 E0101-L02 Multiple Vulnerabilities
2011-05-20 00:00:00