Buffer Overflow Vulnerability in HP OpenView Storage Data Protector
CVE-2011-1733

Currently unrated

Key Information:

Vendor: HP
Status: Openview Storage Data Protector
Vendor: CVE Published:; 7 May 2011

Summary

A stack-based buffer overflow exists in the OmniInet.exe component of the Backup Client Service within HP OpenView Storage Data Protector. This vulnerability allows remote attackers to execute arbitrary code on impacted systems by sending specially crafted HPFGConfig messages. A successful attack could lead to a complete system compromise, necessitating prompt attention and remediation.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/67206

vdb-entryx_refsource_XF

http://osvdb.org/72192

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/47638

vdb-entryx_refsource_BID

EPSS Score

43% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 7, 2011
Vulnerability Reserved
Apr 19, 2011