CVE-2011-1866

HP OpenView Storage Data Protector <6.20 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-1866. PoCs published by Core Security.

AI-analyzed exploit summary This Python script exploits a remote stack overflow vulnerability in HP Data Protector by sending a maliciously crafted packet to port 5555, causing a buffer overflow in the 'omniinet.exe' process. The PoC demonstrates control over EIP and SEH, leading to potential arbitrary code execution.

Description

Buffer overflow in omniinet.exe in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to execute arbitrary code via a crafted request, related to the EXEC_CMD functionality.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Core Security · textdoswindows

https://www.exploit-db.com/exploits/17461

View Code ZIP pw:eip

This Python script exploits a remote stack overflow vulnerability in HP Data Protector by sending a maliciously crafted packet to port 5555, causing a buffer overflow in the 'omniinet.exe' process. The PoC demonstrates control over EIP and SEH, leading to potential arbitrary code execution.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP OpenView Storage Data Protector v6.00-v6.20 (Windows)

No auth needed

Prerequisites: Network access to port 5555 on the target system

MITRE ATT&CK