CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2011-4157

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0990%
EPSS Percentile38.52th
Published2011年11月16日
Last Modified2026年4月29日

Vulnerability Description

Stack-based buffer overflow in hydra.exe in HP SAN/iQ before 9.5 on the HP StorageWorks P4000 Virtual SAN Appliance allows remote attackers to execute arbitrary code via a crafted login request.

Affected Platforms (CPE)

📦
Hp

Centralized Management Console Software

<= 9.0
📦
Hp

Centralized Management Console Software

= 7.0.01
📦
Hp

Centralized Management Console Software

= 8.0
📦
Hp

Centralized Management Console Software

= 8.1
📦
Hp

Centralized Management Console Software

= 8.5
📦
Hp

San\/iq

<= 9.0
📦
Hp

San\/iq

= 8.0
📦
Hp

San\/iq

= 8.1
📦
Hp

San\/iq

= 8.5
🔌
Hp

Storageworks P4000 Virtual San Appliance

All versions

References & Advisories

🔗 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03082086
🔗 http://www.securityfocus.com/bid/47005
🔗 http://www.securityfocus.com/bid/51042
🔗 http://www.zerodayinitiative.com/advisories/ZDI-11-111/
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/71766
🔗 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03082086
🔗 http://www.securityfocus.com/bid/47005
🔗 http://www.securityfocus.com/bid/51042

相關漏洞威脅

CVE-2012-40925.8

The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the ...

CVE-2011-262810.0

Opera before 11.11 does not properly implement FRAMESET elements, which allows remote attackers to execute arbitrary code or cause...

CVE-2011-007710.0

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before...

CVE-2011-007410.0

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before...