CVE-2007-2280

Currently unrated

Key Information:

Vendor: HP
Status: Openview Storage Data Protector
Vendor: CVE Published:; 18 December 2009

Summary

Stack-based buffer overflow in OmniInet.exe (aka the backup client service daemon) in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via an MSG_PROTOCOL command with long arguments, a different vulnerability than CVE-2009-3844.

References

http://www.zerodayinitiative.com/advisories/ZDI-09-099/

x_refsource_MISC

http://www.securityfocus.com/bid/37396

vdb-entryx_refsource_BID

http://marc.info/?l=bugtraq&m=126106261622540&w=2

vendor-advisoryx_refsource_HP

EPSS Score

96% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 18, 2009