CVE-2011-1867

critical

Description

Stack-based buffer overflow in iNodeMngChecker.exe in the User Access Manager (UAM) 5.0 before SP1 E0101P03 and Endpoint Admission Defense (EAD) 5.0 before SP1 E0101P03 components in HP Intelligent Management Center (aka iNode Management Center) allows remote attackers to execute arbitrary code via a 0x0A0BF007 packet.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/68348

http://www.zerodayinitiative.com/advisories/ZDI-11-232/

http://www.securityfocus.com/bid/48527

http://www.securityfocus.com/archive/1/518691/100/0/threaded

http://www.osvdb.org/73597

http://securitytracker.com/id?1025740

http://securityreason.com/securityalert/8302

http://secunia.com/advisories/45129

http://marc.info/?l=bugtraq&m=130982758604404&w=2

Details

Source: Mitre, NVD

Published: 2011-07-11

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical