Signature Detail
Short Name |
APP:HP-INODEMNGCHECKER-EXE-BOF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP iNode Management Center iNodeMngChecker.exe Buffer Overflow |
Release Date |
2013/09/17 |
Update Number |
2301 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: HP iNode Management Center iNodeMngChecker.exe Buffer Overflow
This signature detects attempts to exploit a known vulnerability against HP iNode Management Center. A successful attack allows the attacker to execute arbitrary code within the context of the server.
Extended Description
The HP Intelligent Management Center User Access Manager (UAM) and Endpoint Admission Defense (EAD) products are prone to a remote code-execution vulnerability. An attacker can exploit this vulnerability to execute arbitrary code in the context of the SYSTEM user. Failed attacks will cause denial-of-service conditions. The issue affects the following versions: HP Intelligent Management Center User Access Manager (UAM) v5.0 (E0101) and prior. HP Intelligent Management Center Endpoint Admission Defense (EAD) v5.0 (E0101) and prior.
Affected Products
- HP Intelligent Management Center Endpoint Admission Defense (EAD) 5.0
- HP Intelligent Management Center Endpoint Admission Defense (EAD) 5.0 (E0101)
- HP Intelligent Management Center User Access Manager (UAM) 5.0
- HP Intelligent Management Center User Access Manager (UAM) 5.0 (E0101)
References
- BugTraq: 48527
- CVE: CVE-2011-1867