CVE-2007-2280

HP Openview Storage Data Protector - Memory Corruption

Title source: rule

Description

Stack-based buffer overflow in OmniInet.exe (aka the backup client service daemon) in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via an MSG_PROTOCOL command with long arguments, a different vulnerability than CVE-2009-3844.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16455

View Code ZIP pw:eip

metasploit WORKING POC GREAT

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/hp_omniinet_1.rb

View Code ZIP pw:eip

References (5)

[Mailing List] http://marc.info/?l=bugtraq&m=126106261622540&w=2

[Patch] http://securitytracker.com/id?1023361

[Patch] http://www.zerodayinitiative.com/advisories/ZDI-09-099/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/37396

[Third Party Advisory] http://www.vupen.com/english/advisories/2009/3594

Scores

EPSS 0.7100

EPSS Percentile 98.7%

Details

CWE

CWE-119

Status published

Products (2)

hp/openview_storage_data_protector 5.50

hp/openview_storage_data_protector 6.0

Published Dec 18, 2009

Tracked Since Feb 18, 2026