Lucene search
AbdulAziz HaririLuigi AuriemmaZDI-11-160HistoryMay 10, 2011 - 12:00 a.m.
HP 3COM/H3C Intelligent Management Center img Remote Code Execution Vulnerability
2011-05-1000:00:00
AbdulAziz HaririLuigi Auriemma
www.zerodayinitiative.com
15
EPSS
0.898
Percentile
98.9%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP 3COM/H3C Intelligent Management Center. Authentication is not required to exploit this vulnerability. The flaw exists within the img.exe component which listens by default on TCP port 8800. When handling a packet the process uses the packet length field to make a calculation and blindly copies user supplied data into a fixed-length buffer on the stack. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the SYSTEM user.
Related
checkpoint_advisories
checkpoint_advisories
HP Intelligent Management Center img Buffer Overflow - Ver2 (CVE-2011-1848)
2015-05-18 00:00:00
HP Intelligent Management Center img Buffer Overflow (CVE-2011-1848)
2011-12-20 00:00:00
nvd
nvd
CVE-2011-1848
2011-05-13 17:05:44
securityvulns
securityvulns
ZDI-11-160: HP 3COM/H3C Intelligent Management Center img Remote Code Execution Vulnerability
2011-05-11 00:00:00
[security bulletin] HPSBGN02680 SSRT100361 rev.1 - HP Intelligent Management Center (IMC), Remote Execution of Arbitrary Code
2011-05-11 00:00:00
HP Intelligent Management Center multiple security vulnerabilities
2011-05-11 00:00:00
cvelist
cvelist
CVE-2011-1848
2011-05-13 17:00:00
prion
prion
Stack overflow
2011-05-13 17:05:00
cve
cve
CVE-2011-1848
2011-05-13 17:05:44
nessus
nessus
HP Intelligent Management Center Multiple Vulnerabilities
2011-06-08 00:00:00
HP Intelligent Management Center < 5.0 E0101-L02 Multiple Vulnerabilities
2011-05-24 00:00:00
HP Intelligent Management Center < 5.0 E0101-L02 Multiple Vulnerabilities
2011-05-20 00:00:00