HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability

ID ZDI-12-088
Type zdi
Reporter AbdulAziz Hariri
Modified 2012-06-22T00:00:00


This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP DataDirect SequeLink. Authentication is not required to exploit this vulnerability. The specific flaw exists within how the application parses a packet that is received. When parsing a field in this packet, the application will use a signed length to copy data into a statically sized buffer located on the stack. This can lead to a buffer overflow on the stack and allow for code execution under the context of the service.