CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-2280

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0440%
EPSS Percentile33.21th
Published2009年12月18日
Last Modified2026年4月23日

Vulnerability Description

Stack-based buffer overflow in OmniInet.exe (aka the backup client service daemon) in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via an MSG_PROTOCOL command with long arguments, a different vulnerability than CVE-2009-3844.

Affected Platforms (CPE)

📦
Hp

Openview Storage Data Protector

= 5.50
📦
Hp

Openview Storage Data Protector

= 6.0

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=126106261622540&w=2
🔗 http://securitytracker.com/id?1023361
🔗 http://www.securityfocus.com/bid/37396
🔗 http://www.vupen.com/english/advisories/2009/3594
🔗 http://www.zerodayinitiative.com/advisories/ZDI-09-099/
🔗 http://marc.info/?l=bugtraq&m=126106261622540&w=2
🔗 http://securitytracker.com/id?1023361
🔗 http://www.securityfocus.com/bid/37396

関連する脆弱性情報

CVE-2011-172910.0

Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.1...

CVE-2011-172810.0

Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.1...

CVE-2007-228110.0

Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Reco...

CVE-2011-173010.0

Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.1...