Stack-Based Buffer Overflow in HP Diagnostics Server Affects Multiple Versions
CVE-2012-3278

Currently unrated

Key Information:

Vendor: HP
Status: Diagnostics Server
Vendor: CVE Published:; 25 January 2013

What is CVE-2012-3278?

A stack-based buffer overflow exists in the magentservice.exe component of HP Diagnostics Server versions 8.x through 8.07 and 9.x through 9.21. This vulnerability allows remote attackers to exploit the service by sending specially crafted message packets, potentially resulting in arbitrary code execution on the affected system. Proper remediation and system updates are crucial to mitigate associated risks.

References

https://h20566.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

https://h20566.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.zerodayinitiative.com/advisories/ZDI-12-162/

x_refsource_MISC

EPSS Score

41% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 25, 2013