CVE-2015-7860

2015-10-1918:59:06

CWE-119

[email protected]

web.nvd.nist.gov

cve-2015-7860

buffer overflow

agent

persistent accelerite radia client automation

remote code execution

firewalling

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.735 High

EPSS

Percentile

98.1%

JSON

Stack-based buffer overflow in the agent in Persistent Accelerite Radia Client Automation (formerly HP Client Automation), possibly before 9.1, allows remote attackers to execute arbitrary code by sending a large amount of data in an environment that lacks relationship-based firewalling.

Affected configurations

NVD

Node

acceleriteradia_client_automationMatch7.9

acceleriteradia_client_automationMatch8.1

acceleriteradia_client_automationMatch9.0

acceleriteradia_client_automationMatch9.1

CPENameOperatorVersion
accelerite:radia_client_automationaccelerite radia client automationeq7.9
accelerite:radia_client_automationaccelerite radia client automationeq8.1
accelerite:radia_client_automationaccelerite radia client automationeq9.0
accelerite:radia_client_automationaccelerite radia client automationeq9.1

CPE	Name	Operator	Version
accelerite:radia_client_automation	accelerite radia client automation	eq	7.9
accelerite:radia_client_automation	accelerite radia client automation	eq	8.1
accelerite:radia_client_automation	accelerite radia client automation	eq	9.0
accelerite:radia_client_automation	accelerite radia client automation	eq	9.1