Release DateJan 12, 2010 |
Severitycritical |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt against a stack overflow vulnerability inHP Application Recovery Manager. The vulnerability is caused by an error when the vulnerable software handles a malicious packet. It allows a remote attacker to execute arbitrary code. |
Affected ProductsHP OpenView Data Protector Application Recovery Manager 5.5HP OpenView Data Protector Application Recovery Manager 6.0 |
Recommended ActionsApply the latest update from the vendor:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01943909 |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-1729CVE-2007-2280 CVE-2009-3844 CVE-2011-1865 |
Reference/shttp://www.exploit-db.com/exploits/10715http://www.securityfocus.com/bid/37396 (BugTraq) http://www.securityfocus.com/bid/37250 (BugTraq) http://www.zerodayinitiative.com/advisories/ZDI-09-091/ |
