Vulnerability Details CVE-2011-1728
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed EXEC_BAR message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.438
EPSS Ranking 97.5%
CVSS Severity
CVSS v2 Score 10.0
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02810240
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02810240
- http://osvdb.org/72187
- http://secunia.com/advisories/44402
- http://www.securityfocus.com/archive/1/517764/100/0/threaded
- http://www.securityfocus.com/bid/47638
- http://www.securitytracker.com/id?1025454
- http://zerodayinitiative.com/advisories/ZDI-11-144/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67201
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02810240
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02810240
- http://osvdb.org/72187
- http://secunia.com/advisories/44402
- http://www.securityfocus.com/archive/1/517764/100/0/threaded
- http://www.securityfocus.com/bid/47638
- http://www.securitytracker.com/id?1025454
- http://zerodayinitiative.com/advisories/ZDI-11-144/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67201
Products affected by CVE-2011-1728
-
cpe:2.3:a:hp:openview_storage_data_protector:6.00
-
cpe:2.3:a:hp:openview_storage_data_protector:6.10
-
cpe:2.3:a:hp:openview_storage_data_protector:6.11