CVE-2012-3274

HP Intelligent Management Center < 5.1 - Stack-based Buffer Overflow in User Access Manager

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-3274. PoCs published by Metasploit, e6af8de8b1d4b2b6d5ba2610cbf9cd38, sinn3r, juan vazquez, including Metasploit module exploits/windows/misc/hp_imc_uam.

AI-analyzed exploit summary This Metasploit module exploits a buffer overflow in HP Intelligent Management Center UAM via a malformed UDP packet to port 1811, achieving remote code execution through a ROP chain and DEP bypass.

Description

Stack-based buffer overflow in uam.exe in the User Access Manager (UAM) component in HP Intelligent Management Center (IMC) before 5.1 E0101P01 allows remote attackers to execute arbitrary code via vectors related to log data.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalwindows

https://www.exploit-db.com/exploits/41710

View Code ZIP pw:eip

This Metasploit module exploits a buffer overflow in HP Intelligent Management Center UAM via a malformed UDP packet to port 1811, achieving remote code execution through a ROP chain and DEP bypass.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: HP Intelligent Management Center 5.0 E0101 / UAM 5.0 E0102

No auth needed

Prerequisites: Network access to UDP port 1811 · Target running vulnerable HP IMC/UAM version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC NORMAL

by e6af8de8b1d4b2b6d5ba2610cbf9cd38, sinn3r, juan vazquez · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/hp_imc_uam.rb

View Code ZIP pw:eip

This Metasploit module exploits a buffer overflow in HP Intelligent Management Center UAM (CVE-2012-3274) via a malformed UDP packet to port 1811. It uses a ROP chain to bypass DEP and achieve remote code execution on Windows Server 2003 SP2.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: HP Intelligent Management Center UAM 5.0 E0102

No auth needed

Prerequisites: Network access to UDP port 1811 · Vulnerable HP IMC UAM version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Core References

Various Sources vendor-advisory x_refsource_hp

https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03589863

Third Party Advisory x_refsource_misc

http://zerodayinitiative.com/advisories/ZDI-12-171/

Scores

EPSS 0.7343

EPSS Percentile 98.8%

Details

CWE

CWE-119

Status published

Products (2)

hp/intelligent_management_center 5.0 (6 CPE variants)

hp/intelligent_management_center < 5.1

Published Dec 06, 2012

Tracked Since Feb 18, 2026