HP Intelligent Management Center User Access Manager Datagram Parsing Code Execution

Critical Nessus Plugin ID 63265

Synopsis

The remote host has a user access management application installed that is affected by a code execution vulnerability.

Description

According to its version number, the HP Intelligent Management Center User Access Manager installed on the remote host is affected by a stack-based buffer overflow vulnerability. By sending a specially crafted datagram, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application.

Solution

Upgrade to HP Intelligent Management Center User Access Manager 5.1 SP1 or later.

See Also

http://www.zerodayinitiative.com/advisories/ZDI-12-171/

http://seclists.org/bugtraq/2012/Dec/46

http://www.nessus.org/u?1dfcffd9

Plugin Details

Severity: Critical

ID: 63265

File Name: hp_imc_uac_51_sp1.nasl

Version: 1.4

Type: remote

Published: 2012/12/14

Modified: 2018/07/12

Dependencies: 54998

Risk Information

Risk Factor: Critical

CVSSv2

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:hp:intelligent_management_center

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2012/12/04

Vulnerability Publication Date: 2012/08/29

Exploitable With

Metasploit (HP Intelligent Management Center UAM Buffer Overflow)

Reference Information

CVE: CVE-2012-3274

BID: 55271