CVE-2011-1851 — Improper Restriction of Operations within the Bounds of a Memory Buffer in HP Intelligent Management Center

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

29.8%

top 3.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Intelligent Management Center

Timeline

PublishedMay 13

Latest updateMay 13

Description

Stack-based buffer overflow in tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to execute arbitrary code via a long mode field.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDhp/intelligent_management_center5.0

Patches

Patch: h20000.www2.hp.com ↗Patch: h20000.www2.hp.com ↗

🔴Vulnerability Details

GHSA

GHSA-h5xg-99x8-q54p: Stack-based buffer overflow in tftpserver↗2022-05-13

▶

CVEList

CVE-2011-1851: Stack-based buffer overflow in tftpserver↗2011-05-13

▶