Description
Stack-based buffer overflow in hydra.exe in HP SAN/iQ before 9.5 on the HP StorageWorks P4000 Virtual SAN Appliance allows remote attackers to execute arbitrary code via a crafted login request.
References (5)
Core 5
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-11-111/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/47005
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/51042
Vendor Advisory vendor-advisory
x_refsource_hp
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03082086
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/71766
Scores
EPSS
0.2771
EPSS Percentile
96.5%
Details
CWE
CWE-119
Status
published
Products (10)
hp/centralized_management_console_software
7.0.01 sp1
hp/centralized_management_console_software
8.0
hp/centralized_management_console_software
8.1
hp/centralized_management_console_software
8.5
hp/centralized_management_console_software
< 9.0
hp/san\/iq
8.0
hp/san\/iq
8.1
hp/san\/iq
8.5
hp/san\/iq
< 9.0
hp/storageworks_p4000_virtual_san_appliance
Published
Nov 16, 2011
Tracked Since
Feb 18, 2026