Signature Detail
Short Name |
APP:HP-DATA-PRTCTR-EXEC_CMD-BO |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP OpenView Storage Data Protector EXEC_CMD Buffer Overflow |
Release Date |
2011/08/25 |
Update Number |
1980 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: HP OpenView Storage Data Protector EXEC_CMD Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the HP OpenView Storage Data Protector. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
HP OpenView Storage Data Protector is prone to a stack-based buffer-overflow vulnerability because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue by sending specially crafted packets to TCP port 5555. Successful exploits will allow attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions. HP OpenView Storage Data Protector versions 6.0, 6.10, 6.11 and 6.20 are vulnerable.
Affected Products
- HP OpenView Storage Data Protector 6.0
- HP OpenView Storage Data Protector 6.10
- HP OpenView Storage Data Protector 6.11
- HP OpenView Storage Data Protector 6.20
References
- BugTraq: 64647
- BugTraq: 48488
- CVE: CVE-2013-6195
- CVE: CVE-2011-1866