Executive Summary

Summary
Title HP Operations Manager for Windows, Remote Execution of Arbitrary Code
Informations
Name HPSBMA02491 SSRT100060 First vendor Publication 2010-04-19
Vendor HP Last vendor Modification 2010-04-19
Severity (Vendor) N/A Revision 1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 9.3 Attack Range Network
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A potential security vulnerability has been identified with HP Operations Manager for Windows. The vulnerability could be exploited remotely to allow execution of arbitrary code.

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02078800

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 3

ExploitDB Exploits

id Description
2010-04-20 HP Operations Manager <= v8.16 - (srcvw4.dll) LoadFile()/SaveFile() Remote...

Open Source Vulnerability Database (OSVDB)

Id Description
63931 HP Operations Manager on Windows SourceView ActiveX (srcvw32.dll / srcvw4.dll...

The SourceView ActiveX component of HP Operations Manager is prone to an overflow condition. The component fails to properly sanitize user-supplied input resulting in a stack overflow. With a specially crafted HTML file, a remote attacker can potentially cause a browser crash or arbitrary code execution.

Information Assurance Vulnerability Management (IAVM)

Date Description
2010-04-22 IAVM : 2010-B-0033 - HP Operations Manager Buffer Overflow Vulnerability
Severity : Category I - VMSKEY : V0024010

Nessus® Vulnerability Scanner

Date Description
2010-04-21 Name : The remote Windows host has an ActiveX control that is susceptible to buffer ...
File : hpom_srcvw4_activex_overflow.nasl - Type : ACT_GATHER_INFO