CVE-2011-1865
CVE-2011-1865
Vexday Risk Score
60Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 88.9%KEV nãoPoC públicaNuclei —Metasploit simPatch referenciado
Lifecycle
29 Jun 2011Metasploit module available
29 Jun 2011Public PoC
01 Jul 2011Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allow remote attackers to execute arbitrary code via a request containing crafted parameters.
Affected products
n/a · n/apublic PoCs found — 8
cve_referencewww.exploit-db.com/exploits/17458unverifiedcve_referencewww.exploit-db.com/exploits/17467unverifiedcve_referencewww.exploit-db.com/exploits/17468unverifiedcve_referencewww.exploit-db.com/exploits/17490unverifiedexploitdbwww.exploit-db.com/exploits/17458unverifiedexploitdbwww.exploit-db.com/exploits/17467unverifiedexploitdbwww.exploit-db.com/exploits/17468unverifiedexploitdbwww.exploit-db.com/exploits/17490unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02872182http://secunia.com/advisories/45100http://securityreason.com/securityalert/8288http://securityreason.com/securityalert/8290http://securityreason.com/securityalert/8291http://securityreason.com/securityalert/8295http://securitytracker.com/id?1025731https://exchange.xforce.ibmcloud.com/vulnerabilities/68281http://www.coresecurity.com/content/HP-Data-Protector-multiple-vulnerabilitieshttp://www.exploit-db.com/exploits/17458http://www.exploit-db.com/exploits/17467http://www.exploit-db.com/exploits/17468