CVE-2007-2281

Currently unrated

Key Information:

Vendor: HP
Status: Openview Storage Data Protector
Vendor: CVE Published:; 18 December 2009

Summary

Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via a large value in the size parameter.

References

http://dvlabs.tippingpoint.com/advisory/TPTI-09-15

x_refsource_MISC

http://marc.info/?l=bugtraq&m=126106261622540&w=2

vendor-advisoryx_refsource_HP

http://marc.info/?l=bugtraq&m=126106261622540&w=2

vendor-advisoryx_refsource_HP

EPSS Score

66% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 18, 2009