CVE-2010-1033

HP Operations Manager 7.5, 8.10, 8.16 - Stack-Based Buffer Overflow via LoadFile or SaveFile Method

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-1033. PoCs published by mr_me.

AI-analyzed exploit summary This is a proof-of-concept exploit for CVE-2010-1033, targeting a Unicode stack overflow vulnerability in HP Operations Manager's srcvw4.dll via the LoadFile() or SaveFile() functions. The exploit uses a long string of Unicode characters to overwrite the SEH chain, though it notes that code execution is not directly achievable due to lack of Unicode-friendly PPRs.

Description

Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argument to the (1) LoadFile or (2) SaveFile method, related to srcvw32.dll and srcvw4.dll.

Exploits (1)

exploitdb WORKING POC VERIFIED

by mr_me · htmldoswindows

https://www.exploit-db.com/exploits/12302

View Code ZIP pw:eip

This is a proof-of-concept exploit for CVE-2010-1033, targeting a Unicode stack overflow vulnerability in HP Operations Manager's srcvw4.dll via the LoadFile() or SaveFile() functions. The exploit uses a long string of Unicode characters to overwrite the SEH chain, though it notes that code execution is not directly achievable due to lack of Unicode-friendly PPRs.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: HP Operations Manager <= v8.16 (srcvw4.dll)

No auth needed

Prerequisites: Victim must visit a malicious webpage using Internet Explorer 6 or 7 · HP Operations Manager <= v8.16 installed on the target system

MITRE ATT&CK