CVE-2010-1033

Currently unrated

Key Information:

Vendor: HP
Status: Operations Manager
Vendor: CVE Published:; 21 April 2010

Summary

Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argument to the (1) LoadFile or (2) SaveFile method, related to srcvw32.dll and srcvw4.dll.

References

http://www.securityfocus.com/bid/39578

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/57938

vdb-entryx_refsource_XF

http://secunia.com/advisories/39538

third-party-advisoryx_refsource_SECUNIA

EPSS Score

22% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 21, 2010
Vulnerability Reserved
Mar 19, 2010