Lucene search
E6af8de8b1d4b2b6d5ba2610cbf9cd38ZDI-13-014HistoryFeb 11, 2013 - 12:00 a.m.
Hewlett-Packard LeftHand Virtual SAN Appliance Hydra Ping Hostname Remote Code Execution Vulnerability
2013-02-1100:00:00
e6af8de8b1d4b2b6d5ba2610cbf9cd38
www.zerodayinitiative.com
17
EPSS
0.935
Percentile
99.2%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP LeftHand Virtual SAN Appliance. Authentication is not required to exploit this vulnerability. The flaw exists within the hydra service, specifically with the LHNModParam component. This process listens on TCP port 13838. When attempting to service an application level ping request, the process fails to properly verify the length of the hostname parameter before copying to a local stack buffer. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the root user.
Related
prion
prion
Design/Logic Flaw
2013-02-06 12:05:00
nvd
nvd
CVE-2012-3285
2013-02-06 12:05:42
cvelist
cvelist
CVE-2012-3285
2013-02-06 11:00:00
cve
cve
CVE-2012-3285
2013-02-06 12:05:42
saint
saint
HP LeftHand Virtual SAN Appliance hydra Ping Hostname Overflow
2013-09-19 00:00:00
HP LeftHand Virtual SAN Appliance hydra Ping Hostname Overflow
2013-09-19 00:00:00
HP LeftHand Virtual SAN Appliance hydra Ping Hostname Overflow
2013-09-19 00:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
nessus
nessus
HP LeftHand Virtual SAN Appliance < 10.0 hydra Service Multiple RCE
2013-02-14 00:00:00