13843 : HP Web-enabled Management Software HTTP Server Remote Overflow
Printer | http://osvdb.org/13843 | Email This | Edit Vulnerability

Views This Week

Views All Time

464

Info

Last Modified

5 months ago

Percent Complete

90%

Disclosure

Feb 15, 2005

Discovery

Feb 14, 2005

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote overflow exists in the HP Web-enabled Management Software HTTP server, running any Web Based Enterprise Management Agent or Utility that resides on TCP port 2301. The server fails to validate user supplied input resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service condition (server crash) or potentially execute arbitrary code.

Classification

Location: Remote/Network Access Required
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to version 5.96 or higher, as it has been reported to fix this
vulnerability. It is also possible to correct the flaw by implementing
the following workaround(s):

Downloaded the patch file from hp; file is a self-extracting executable with
a filename based on the Smart Component Number. Have all the associated files
listed below in a single directory on your hard drive.

SP29008.txt
patchweb.bat
findver.exe
regtool.exe
strexp.exe
cpqhmmo2.fre
cpqlogin.frm
cpqopts.frm

From a DOS command shell change to that drive and directory and type:

patchweb patch

This will replace the necessary files.

Products

Hewlett-Packard Development Company, L.P.	Array Configuration Utility	Unknown or Unspecified
	Insight Manager	7
	Version Control Agents	1.0
	HP Version Control Repository Agent	Unknown or Unspecified
	ProLiant Performance Analyzer	Unknown or Unspecified
	HP Insight Management Agents	5.3
		5.4
		5.5
		6.0
	Performance Management Pack	Unknown or Unspecified
	Performance Management Pack Tools	Unknown or Unspecified

References

Bugtraq ID: 12566
CIAC Advisory: p-141
Other Advisory URL: http://h18004.www1.hp.com/products/servers/management/SSRT2310c.html
Vendor Specific Advisory URL: http://h18023.www1.hp.com/support/files/Server/us/download/22192.html
Secunia Advisory ID: 14311
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-02/0235.html
CVE ID: 2005-4823 (see also: NVD)
Security Tracker: 1013182
Vendor URL: http://www.hp.com/

Tools & Filters

Nessus	17997

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Hewlett-Packard Development Company, L.P.

Array Configuration Utility

Insight Manager

Version Control Agents

HP Version Control Repository Agent

ProLiant Performance Analyzer

HP Insight Management Agents

Performance Management Pack

Performance Management Pack Tools

References

Tools & Filters

Credit

Blogs

Comments