Lucene search
Luigi AuriemmaZDI-11-166HistoryMay 10, 2011 - 12:00 a.m.
HP 3COM/H3C Intelligent Management Center imcsyslogdm Remote Code Execution Vulnerability
2011-05-1000:00:00
Luigi Auriemma
www.zerodayinitiative.com
13
EPSS
0.361
Percentile
97.2%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP 3com/H3C Intelligent Management Center. Authentication is not required to exploit this vulnerability. The flaw exists within the imcsyslogdm.exe component which listens by default on UDP port 514. When handling a syslog packet having a size larger than 2048 bytes the process attempts to exit. An exception handler is called that makes a call into a location that has been previously freed. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the SYSTEM user.
Related
cvelist
cvelist
CVE-2011-1854
2011-05-13 17:00:00
nvd
nvd
CVE-2011-1854
2011-05-13 17:05:45
cve
cve
CVE-2011-1854
2011-05-13 17:05:45
securityvulns
securityvulns
ZDI-11-166: HP 3COM/H3C Intelligent Management Center imcsyslogdm Remote Code Execution Vulnerability
2011-05-11 00:00:00
[security bulletin] HPSBGN02680 SSRT100361 rev.1 - HP Intelligent Management Center (IMC), Remote Execution of Arbitrary Code
2011-05-11 00:00:00
HP Intelligent Management Center multiple security vulnerabilities
2011-05-11 00:00:00
prion
prion
Design/Logic Flaw
2011-05-13 17:05:00
nessus
nessus
HP Intelligent Management Center Multiple Vulnerabilities
2011-06-08 00:00:00
HP Intelligent Management Center < 5.0 E0101-L02 Multiple Vulnerabilities
2011-05-24 00:00:00
HP Intelligent Management Center < 5.0 E0101-L02 Multiple Vulnerabilities
2011-05-20 00:00:00