Описание
Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argument to the (1) LoadFile or (2) SaveFile method, related to srcvw32.dll and srcvw4.dll.
Ссылки
- Vendor Advisory
- URL Repurposed
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- URL Repurposed
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:hp:operations_manager:7.5:*:windows:*:*:*:*:*
cpe:2.3:a:hp:operations_manager:8.10:*:windows:*:*:*:*:*
cpe:2.3:a:hp:operations_manager:8.16:*:windows:*:*:*:*:*
EPSS
Процентиль: 96%
0.22586
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argument to the (1) LoadFile or (2) SaveFile method, related to srcvw32.dll and srcvw4.dll.
EPSS
Процентиль: 96%
0.22586
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119