HP Intelligent Management Center User Access Manager Datagram Parsing Code Execution

critical Nessus Plugin ID 63265
New! Vulnerability Priority Rating (VPR)

Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it is different from CVSS.

VPR Score: 7.4

Synopsis

The remote host has a user access management application installed that is affected by a code execution vulnerability.

Description

According to its version number, the HP Intelligent Management Center User Access Manager installed on the remote host is affected by a stack-based buffer overflow vulnerability. By sending a specially crafted datagram, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application.

Solution

Upgrade to HP Intelligent Management Center User Access Manager 5.1 SP1 or later.

See Also

https://www.zerodayinitiative.com/advisories/ZDI-12-171/

https://seclists.org/bugtraq/2012/Dec/46

http://www.nessus.org/u?14469924

Plugin Details

Severity: Critical

ID: 63265

File Name: hp_imc_uac_51_sp1.nasl

Version: 1.5

Type: remote

Published: 12/14/2012

Updated: 11/15/2018

Dependencies: hp_imc_detect.nbin

Risk Information

Risk Factor: Critical

VPR Score: 7.4

CVSS v2.0

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:2.3:a:hp:intelligent_management_center:*:*:*:*:*:*:*:*

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 12/4/2012

Vulnerability Publication Date: 8/29/2012

Exploitable With

Metasploit (HP Intelligent Management Center UAM Buffer Overflow)

Reference Information

CVE: CVE-2012-3274

BID: 55271