HP OpenView Storage Data Protector Stack Buffer Overflow
Publish Date: 21 juillet 2015
Gravité: : Critique
Identifiant(s) CVE: : CVE-2007-2280
Date du conseil: 21 juillet 2015
Description
Stack-based buffer overflow in OmniInet.exe (aka the backup client service daemon) in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via an MSG_PROTOCOL command with long arguments.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1003958
Trend Micro Deep Security DPI Rule Name: 1003899 - HP OpenView Data Protector Application Recovery Manager Buffer Overflow
Affected software and version:
- hp openview_storage_data_protector 5.50
- hp openview_storage_data_protector 6.0