Lucene search
Luigi AuriemmaZDI-12-114HistoryJul 12, 2012 - 12:00 a.m.
HP OpenView Performance Agent coda.exe Opcode 0x34 Remote Code Execution Vulnerability
2012-07-1200:00:00
Luigi Auriemma
www.zerodayinitiative.com
17
0.946 High
EPSS
Percentile
99.3%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP OpenView Performance Agent. Authentication is not required to exploit this vulnerability. The specific flaw exists within the coda.exe process which listens on a random TCP port by default. The process trusts a value within a GET request as a size. It then proceeds to copy that many bytes of user-supplied data into a fixed-length buffer on the stack. Remote unauthenticated attackers can exploit this vulnerability by sending malformed message packets to the target, which could ultimately lead to arbitrary code execution under the context of the SYSTEM user.
Related
saint
saint
HP Operations Agent Opcode 0x34 vulnerability
2012-08-06 00:00:00
HP Operations Agent Opcode 0x34 vulnerability
2012-08-06 00:00:00
HP Operations Agent Opcode 0x34 vulnerability
2012-08-06 00:00:00
securityvulns
securityvulns
ZDI-12-114 : HP OpenView Performance Agent coda.exe Opcode 0x34 Remote Code Execution Vulnerability
2012-07-16 00:00:00
HP Operations Agent code execution
2012-07-16 00:00:00
packetstorm
packetstorm
HP Operations Agent Opcode coda.exe 0x34 Buffer Overflow
2012-10-28 00:00:00
checkpoint_advisories
checkpoint_advisories
HP Operations Agent Opcode Stack Buffer Overflow - Ver2 (CVE-2012-2019)
2015-03-26 00:00:00
HP Operations Agent Opcode 0x34 Stack Buffer Overflow (CVE-2012-2019)
2012-10-14 00:00:00
cvelist
cvelist
CVE-2012-2019
2022-10-03 16:15:38
cve
cve
CVE-2012-2019
2022-10-03 16:15:38
prion
prion
Design/Logic Flaw
2012-07-11 04:54:00
nvd
nvd
CVE-2012-2019
2012-07-11 04:54:29