Stack-Based Buffer Overflow in HP Power Manager Management Web Server
CVE-2009-2685

Currently unrated

Key Information:

Vendor: HP
Status: Power Manager
Vendor: CVE Published:; 6 November 2009

Badges

👾 Exploit Exists🟣 EPSS 72%

What is CVE-2009-2685?

A stack-based buffer overflow vulnerability exists in the login form of the management web server in HP Power Manager. This flaw allows remote attackers to exploit the Login variable, potentially enabling them to execute arbitrary code on the affected system. If successfully executed, this may lead to unauthorized access and control over the server.

References

http://www.osvdb.org/59684

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/36933

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2009/3154

vdb-entryx_refsource_VUPEN

EPSS Score

72% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Jan 31, 2025
Vulnerability published
Nov 6, 2009
Vulnerability Reserved
Aug 5, 2009