Signature Detail

APP: HP OpenView Storage Data Protector Stack Buffer Overflow

This signature detects attempts to exploit a known buffer overflow vulnerability in HP OpenView Storage Data Protector. It is due to a boundary error when processing requests sent to the Cell Request Service (crs.exe) process. A remote unauthenticated attacker can exploit this by sending a crafted request with opcode 0x010b to a target server, potentially causing arbitrary code to be injected and executed in the security context of the user configured during the service installation (Administrator by default).

References

• URL: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01124817