Buffer Overflow Vulnerability in HP OpenView Storage Data Protector
CVE-2011-1730

Currently unrated

Key Information:

Vendor: HP
Status: Openview Storage Data Protector
Vendor: CVE Published:; 7 May 2011

Summary

A stack-based buffer overflow vulnerability exists in the OmniInet.exe component of HP OpenView Storage Data Protector. This flaw allows remote attackers to execute arbitrary code through a specially crafted EXEC_SCRIPT message sent to the Backup Client Service. The affected versions include 6.00, 6.10, and 6.11. It is crucial for users to implement available patches and updates to mitigate risks associated with this vulnerability.

References

http://www.securityfocus.com/bid/47638

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/67203

vdb-entryx_refsource_XF

http://zerodayinitiative.com/advisories/ZDI-11-146/

x_refsource_MISC

EPSS Score

43% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 7, 2011
Vulnerability Reserved
Apr 19, 2011