Vulnerability Details CVE-2009-3844
Stack-based buffer overflow in the OmniInet process in HP OpenView Data Protector Application Recovery Manager 5.50 and 6.0 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted MSG_PROTOCOL packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.663
EPSS Ranking 98.5%
CVSS Severity
CVSS v2 Score 10.0
References
- http://marc.info/?l=bugtraq&m=126029001704529&w=2
- http://marc.info/?l=bugtraq&m=126029001704529&w=2
- http://secunia.com/advisories/37600
- http://securitytracker.com/id?1023288
- http://www.securityfocus.com/archive/1/508329/100/0/threaded
- http://www.securityfocus.com/bid/37250
- http://www.vupen.com/english/advisories/2009/3454
- http://zerodayinitiative.com/advisories/ZDI-09-091/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/54638
- http://marc.info/?l=bugtraq&m=126029001704529&w=2
- http://marc.info/?l=bugtraq&m=126029001704529&w=2
- http://secunia.com/advisories/37600
- http://securitytracker.com/id?1023288
- http://www.securityfocus.com/archive/1/508329/100/0/threaded
- http://www.securityfocus.com/bid/37250
- http://www.vupen.com/english/advisories/2009/3454
- http://zerodayinitiative.com/advisories/ZDI-09-091/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/54638
Products affected by CVE-2009-3844
-
cpe:2.3:a:hp:openview_data_protector_application_recovery_manager:5.50
-
cpe:2.3:a:hp:openview_data_protector_application_recovery_manager:6.0