CVE-2011-1852

Description

Multiple stack-based buffer overflows in tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allow remote attackers to execute arbitrary code via crafted packet content accompanying a (1) DATA or (2) ERROR opcode.

Affected products

• HP / intelligent_management_center5.0 – 5.0
• HP / intelligent_management_center5.0 – 5.0
• HP / intelligent_management_center5.0 – 5.0

References

• MISChttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02822750
• MISChttp://securitytracker.com/id?1025519
• MISChttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02822750
• VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-11-164/
• MISChttp://www.securityfocus.com/bid/47789