CVE-2007-2281

EPSS 7.12%
Veröffentlicht 18.12.2009 19:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via a large value in the size parameter.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hp ≫ Openview Storage Data Protector Version5.50

Hp ≫ Openview Storage Data Protector Version6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	7.12%	0.911

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://marc.info/?l=bugtraq&m=126106261622540&w=2

http://securitytracker.com/id?1023361

Patch

http://www.vupen.com/english/advisories/2009/3594

http://dvlabs.tippingpoint.com/advisory/TPTI-09-15

http://www.securityfocus.com/bid/37386

https://nvd.nist.gov/vuln/detail/CVE-2007-2281

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-2281

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-2281

EUVD