CVE-2010-1033
Summary
| CVE | CVE-2010-1033 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2010-04-21 14:30:00 UTC |
| Updated | 2017-08-17 01:32:00 UTC |
| Description | Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argument to the (1) LoadFile or (2) SaveFile method, related to srcvw32.dll and srcvw4.dll. |
Risk And Classification
Problem Types: CWE-119
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Hp | Operations Manager | 7.5 | All | windows | All |
| Application | Hp | Operations Manager | 8.10 | All | windows | All |
| Application | Hp | Operations Manager | 8.16 | All | windows | All |
| Application | Hp | Operations Manager | 7.5 | All | windows | All |
| Application | Hp | Operations Manager | 8.10 | All | windows | All |
| Application | Hp | Operations Manager | 8.16 | All | windows | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | Vendor Advisory |
| SecurityTracker.com Archives - HP Operations Manager Unspecified Flaw Lets Remote Users Execute Arbitrary Code | SECTRACK | securitytracker.com | |
| www.corelan.be/advisories.php | MISC | www.corelan.be | |
| www.corelan.be/wp-content/forum-file-uploads/mr_me/hpoperationsmngr.html.txt | MISC | www.corelan.be | |
| HP Operations Manager SourceView ActiveX Control Buffer Overflow - Advisories - Community | SECUNIA | secunia.com | Vendor Advisory |
| HPSBMA02491 SSRT100060 rev.1 - HP Operations Manager for Windows, Remote Execution of Arbitrary Code - c02078800 - HP Business Support Center | HP | h20000.www2.hp.com | Vendor Advisory |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Application is not available | MISC | net-ninja.net | |
| HP Operations Manager Buffer Overflow Vulnerability | BID | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.