Description
Stack-based buffer overflow in HP Power Manager (HPPM) before 4.3.2 allows remote attackers to execute arbitrary code via a long Login variable to the management web server.
Affected products
- HP / power_manager4.2.9
- HP / power_manager4.2.5 – 4.2.5
- HP / power_manager4.2.6 – 4.2.6
- HP / power_manager4.2.7 – 4.2.7
- HP / power_manager4.2.8 – 4.2.8
References
- MISChttp://www.securitytracker.com/id?1024902
- MAILING_LISThttp://marc.info/?l=bugtraq&m=129251322532373&w=2
- VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-10-292/
- MAILING_LISThttp://marc.info/?l=bugtraq&m=129251322532373&w=2
- VENDOR_ADVISORYhttp://secunia.com/advisories/42644