Denial of Service Vulnerability in HP Performance Products
CVE-2007-4349

Currently unrated

Key Information:

Vendor: HP
Status: Openview Performance Agent; Reporter; Openview Reporter; Performance Agent
Vendor: CVE Published:; 23 October 2008

Summary

The Shared Trace Service in various HP Performance Agent and OpenView products contains a vulnerability that allows remote attackers to induce a denial of service. By sending a series of crafted RPC requests, attackers can exploit an out-of-bounds memory access, which results from an erroneous object reference. This can lead to the service becoming unavailable, affecting system performance and reliability.

References

http://securityreason.com/securityalert/4501

third-party-advisoryx_refsource_SREASON

http://marc.info/?l=bugtraq&m=122876677518654&w=2

vendor-advisoryx_refsource_HP

http://www.securitytracker.com/id?1021092

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Oct 23, 2008
Vulnerability Reserved
Aug 14, 2007