Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
6 vulnerabilities found for openview_performance_agent by hp
CVE-2011-2608 (GCVE-0-2011-2608)
Vulnerability from nvd – Published: 2011-07-01 10:00 – Updated: 2024-08-06 23:08
VLAI
Summary
ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
6 references
| URL | Tags |
|---|---|
| http://securitytracker.com/id?1025715 | vdb-entryx_refsource_SECTRACK |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://marc.info/?l=bugtraq&m=131188898632504&w=2 | vendor-advisoryx_refsource_HP |
| http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt | x_refsource_MISC |
| http://www.securityfocus.com/bid/48481 | vdb-entryx_refsource_BID |
| http://secunia.com/advisories/45079 | third-party-advisoryx_refsource_SECUNIA |
Date Public
2011-06-27 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T23:08:23.891Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "1025715",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1025715"
},
{
"name": "hp-operations-ovbbccb-file-deletion(68269)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68269"
},
{
"name": "HPSBMU02691",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"name": "SSRT100483",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt"
},
{
"name": "48481",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/48481"
},
{
"name": "45079",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45079"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2011-06-27T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-28T12:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "1025715",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1025715"
},
{
"name": "hp-operations-ovbbccb-file-deletion(68269)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68269"
},
{
"name": "HPSBMU02691",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"name": "SSRT100483",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt"
},
{
"name": "48481",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/48481"
},
{
"name": "45079",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45079"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-2608",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1025715",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1025715"
},
{
"name": "hp-operations-ovbbccb-file-deletion(68269)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68269"
},
{
"name": "HPSBMU02691",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"name": "SSRT100483",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"name": "http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt",
"refsource": "MISC",
"url": "http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt"
},
{
"name": "48481",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/48481"
},
{
"name": "45079",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45079"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2011-2608",
"datePublished": "2011-07-01T10:00:00.000Z",
"dateReserved": "2011-07-01T00:00:00.000Z",
"dateUpdated": "2024-08-06T23:08:23.891Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-4420 (GCVE-0-2008-4420)
Vulnerability from nvd – Published: 2009-04-13 16:00 – Updated: 2024-08-07 10:17
VLAI
Summary
Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
13 references
| URL | Tags |
|---|---|
| http://www.securitytracker.com/id?1022021 | vdb-entryx_refsource_SECTRACK |
| http://innermedia.com/upgrades.html | x_refsource_MISC |
| http://www.securityfocus.com/archive/1/441083 | mailing-listx_refsource_BUGTRAQ |
| http://www.securityfocus.com/bid/19143 | vdb-entryx_refsource_BID |
| http://h20000.www2.hp.com/bizsupport/TechSupport/… | vendor-advisoryx_refsource_HP |
| http://osvdb.org/53478 | vdb-entryx_refsource_OSVDB |
| http://vuln.sg/dynazip5007-en.html | x_refsource_MISC |
| http://www.securityfocus.com/archive/1/441084 | mailing-listx_refsource_BUGTRAQ |
| http://secunia.com/advisories/21180 | third-party-advisoryx_refsource_SECUNIA |
| http://vuln.sg/turbozip6-en.html | x_refsource_MISC |
| http://www.vupen.com/english/advisories/2006/2957 | vdb-entryx_refsource_VUPEN |
| http://secunia.com/advisories/34659 | third-party-advisoryx_refsource_SECUNIA |
| http://www.vupen.com/english/advisories/2009/0980 | vdb-entryx_refsource_VUPEN |
Date Public
2006-07-25 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T10:17:09.276Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "1022021",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1022021"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://innermedia.com/upgrades.html"
},
{
"name": "20060725 [vuln.sg] DynaZip DZIP32.DLL/DZIPS32.DLL Buffer Overflow Vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/441083"
},
{
"name": "19143",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/19143"
},
{
"name": "HPSBMA02396",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "53478",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/53478"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://vuln.sg/dynazip5007-en.html"
},
{
"name": "20060725 [vuln.sg] TurboZIP ZIP Repair Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/441084"
},
{
"name": "21180",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/21180"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://vuln.sg/turbozip6-en.html"
},
{
"name": "ADV-2006-2957",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/2957"
},
{
"name": "34659",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/34659"
},
{
"name": "SSRT080175",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "ADV-2009-0980",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/0980"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-07-25T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2009-04-16T09:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "1022021",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1022021"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://innermedia.com/upgrades.html"
},
{
"name": "20060725 [vuln.sg] DynaZip DZIP32.DLL/DZIPS32.DLL Buffer Overflow Vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/441083"
},
{
"name": "19143",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/19143"
},
{
"name": "HPSBMA02396",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "53478",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/53478"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://vuln.sg/dynazip5007-en.html"
},
{
"name": "20060725 [vuln.sg] TurboZIP ZIP Repair Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/441084"
},
{
"name": "21180",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/21180"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://vuln.sg/turbozip6-en.html"
},
{
"name": "ADV-2006-2957",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/2957"
},
{
"name": "34659",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/34659"
},
{
"name": "SSRT080175",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "ADV-2009-0980",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/0980"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-4420",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1022021",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1022021"
},
{
"name": "http://innermedia.com/upgrades.html",
"refsource": "MISC",
"url": "http://innermedia.com/upgrades.html"
},
{
"name": "20060725 [vuln.sg] DynaZip DZIP32.DLL/DZIPS32.DLL Buffer Overflow Vulnerabilities",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/441083"
},
{
"name": "19143",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/19143"
},
{
"name": "HPSBMA02396",
"refsource": "HP",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "53478",
"refsource": "OSVDB",
"url": "http://osvdb.org/53478"
},
{
"name": "http://vuln.sg/dynazip5007-en.html",
"refsource": "MISC",
"url": "http://vuln.sg/dynazip5007-en.html"
},
{
"name": "20060725 [vuln.sg] TurboZIP ZIP Repair Buffer Overflow Vulnerability",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/441084"
},
{
"name": "21180",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/21180"
},
{
"name": "http://vuln.sg/turbozip6-en.html",
"refsource": "MISC",
"url": "http://vuln.sg/turbozip6-en.html"
},
{
"name": "ADV-2006-2957",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/2957"
},
{
"name": "34659",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/34659"
},
{
"name": "SSRT080175",
"refsource": "HP",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "ADV-2009-0980",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/0980"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-4420",
"datePublished": "2009-04-13T16:00:00.000Z",
"dateReserved": "2008-10-03T00:00:00.000Z",
"dateUpdated": "2024-08-07T10:17:09.276Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-4349 (GCVE-0-2007-4349)
Vulnerability from nvd – Published: 2008-10-23 21:00 – Updated: 2024-08-07 14:53
VLAI
Summary
The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
10 references
| URL | Tags |
|---|---|
| http://securityreason.com/securityalert/4501 | third-party-advisoryx_refsource_SREASON |
| http://marc.info/?l=bugtraq&m=122876677518654&w=2 | vendor-advisoryx_refsource_HP |
| http://www.securitytracker.com/id?1021092 | vdb-entryx_refsource_SECTRACK |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://secunia.com/advisories/27054 | third-party-advisoryx_refsource_SECUNIA |
| http://secunia.com/secunia_research/2007-83/ | x_refsource_MISC |
| http://www.securityfocus.com/archive/1/497648/100… | mailing-listx_refsource_BUGTRAQ |
| http://www.securityfocus.com/bid/31860 | vdb-entryx_refsource_BID |
| http://www.vupen.com/english/advisories/2008/2888 | vdb-entryx_refsource_VUPEN |
| http://marc.info/?l=bugtraq&m=122876827120961&w=2 | vendor-advisoryx_refsource_HP |
Date Public
2008-10-22 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T14:53:55.597Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "4501",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/4501"
},
{
"name": "HPSBMA02391",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876677518654\u0026w=2"
},
{
"name": "1021092",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1021092"
},
{
"name": "ov-traceservice-rpc-dos(46028)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46028"
},
{
"name": "27054",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27054"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://secunia.com/secunia_research/2007-83/"
},
{
"name": "20081022 Secunia Research: HP OpenView Products Shared Trace Service Denial of Service",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/497648/100/0/threaded"
},
{
"name": "31860",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/31860"
},
{
"name": "ADV-2008-2888",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2008/2888"
},
{
"name": "HPSBMA02390",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
},
{
"name": "SSRT071481",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-10-22T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-15T20:57:01.000Z",
"orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
"shortName": "flexera"
},
"references": [
{
"name": "4501",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/4501"
},
{
"name": "HPSBMA02391",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876677518654\u0026w=2"
},
{
"name": "1021092",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1021092"
},
{
"name": "ov-traceservice-rpc-dos(46028)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46028"
},
{
"name": "27054",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27054"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://secunia.com/secunia_research/2007-83/"
},
{
"name": "20081022 Secunia Research: HP OpenView Products Shared Trace Service Denial of Service",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/497648/100/0/threaded"
},
{
"name": "31860",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/31860"
},
{
"name": "ADV-2008-2888",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2008/2888"
},
{
"name": "HPSBMA02390",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
},
{
"name": "SSRT071481",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "PSIRT-CNA@flexerasoftware.com",
"ID": "CVE-2007-4349",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "4501",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/4501"
},
{
"name": "HPSBMA02391",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=122876677518654\u0026w=2"
},
{
"name": "1021092",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1021092"
},
{
"name": "ov-traceservice-rpc-dos(46028)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46028"
},
{
"name": "27054",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/27054"
},
{
"name": "http://secunia.com/secunia_research/2007-83/",
"refsource": "MISC",
"url": "http://secunia.com/secunia_research/2007-83/"
},
{
"name": "20081022 Secunia Research: HP OpenView Products Shared Trace Service Denial of Service",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/497648/100/0/threaded"
},
{
"name": "31860",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/31860"
},
{
"name": "ADV-2008-2888",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2008/2888"
},
{
"name": "HPSBMA02390",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
},
{
"name": "SSRT071481",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
"assignerShortName": "flexera",
"cveId": "CVE-2007-4349",
"datePublished": "2008-10-23T21:00:00.000Z",
"dateReserved": "2007-08-14T00:00:00.000Z",
"dateUpdated": "2024-08-07T14:53:55.597Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2011-2608 (GCVE-0-2011-2608)
Vulnerability from cvelistv5 – Published: 2011-07-01 10:00 – Updated: 2024-08-06 23:08
VLAI
Summary
ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
6 references
| URL | Tags |
|---|---|
| http://securitytracker.com/id?1025715 | vdb-entryx_refsource_SECTRACK |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://marc.info/?l=bugtraq&m=131188898632504&w=2 | vendor-advisoryx_refsource_HP |
| http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt | x_refsource_MISC |
| http://www.securityfocus.com/bid/48481 | vdb-entryx_refsource_BID |
| http://secunia.com/advisories/45079 | third-party-advisoryx_refsource_SECUNIA |
Date Public
2011-06-27 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T23:08:23.891Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "1025715",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1025715"
},
{
"name": "hp-operations-ovbbccb-file-deletion(68269)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68269"
},
{
"name": "HPSBMU02691",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"name": "SSRT100483",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt"
},
{
"name": "48481",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/48481"
},
{
"name": "45079",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/45079"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2011-06-27T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-28T12:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "1025715",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1025715"
},
{
"name": "hp-operations-ovbbccb-file-deletion(68269)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68269"
},
{
"name": "HPSBMU02691",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"name": "SSRT100483",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt"
},
{
"name": "48481",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/48481"
},
{
"name": "45079",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/45079"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-2608",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operations Agent 11.0, 8.60.005, 8.60.006, 8.60.007, 8.60.008, 8.60.501, and 8.53; allows remote attackers to delete arbitrary files via a full pathname in the File field in a Register command."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1025715",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1025715"
},
{
"name": "hp-operations-ovbbccb-file-deletion(68269)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68269"
},
{
"name": "HPSBMU02691",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"name": "SSRT100483",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=131188898632504\u0026w=2"
},
{
"name": "http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt",
"refsource": "MISC",
"url": "http://aluigi.altervista.org/adv/ovbbccb_1-adv.txt"
},
{
"name": "48481",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/48481"
},
{
"name": "45079",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/45079"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2011-2608",
"datePublished": "2011-07-01T10:00:00.000Z",
"dateReserved": "2011-07-01T00:00:00.000Z",
"dateUpdated": "2024-08-06T23:08:23.891Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-4420 (GCVE-0-2008-4420)
Vulnerability from cvelistv5 – Published: 2009-04-13 16:00 – Updated: 2024-08-07 10:17
VLAI
Summary
Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
13 references
| URL | Tags |
|---|---|
| http://www.securitytracker.com/id?1022021 | vdb-entryx_refsource_SECTRACK |
| http://innermedia.com/upgrades.html | x_refsource_MISC |
| http://www.securityfocus.com/archive/1/441083 | mailing-listx_refsource_BUGTRAQ |
| http://www.securityfocus.com/bid/19143 | vdb-entryx_refsource_BID |
| http://h20000.www2.hp.com/bizsupport/TechSupport/… | vendor-advisoryx_refsource_HP |
| http://osvdb.org/53478 | vdb-entryx_refsource_OSVDB |
| http://vuln.sg/dynazip5007-en.html | x_refsource_MISC |
| http://www.securityfocus.com/archive/1/441084 | mailing-listx_refsource_BUGTRAQ |
| http://secunia.com/advisories/21180 | third-party-advisoryx_refsource_SECUNIA |
| http://vuln.sg/turbozip6-en.html | x_refsource_MISC |
| http://www.vupen.com/english/advisories/2006/2957 | vdb-entryx_refsource_VUPEN |
| http://secunia.com/advisories/34659 | third-party-advisoryx_refsource_SECUNIA |
| http://www.vupen.com/english/advisories/2009/0980 | vdb-entryx_refsource_VUPEN |
Date Public
2006-07-25 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T10:17:09.276Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "1022021",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1022021"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://innermedia.com/upgrades.html"
},
{
"name": "20060725 [vuln.sg] DynaZip DZIP32.DLL/DZIPS32.DLL Buffer Overflow Vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/441083"
},
{
"name": "19143",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/19143"
},
{
"name": "HPSBMA02396",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "53478",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/53478"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://vuln.sg/dynazip5007-en.html"
},
{
"name": "20060725 [vuln.sg] TurboZIP ZIP Repair Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/441084"
},
{
"name": "21180",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/21180"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://vuln.sg/turbozip6-en.html"
},
{
"name": "ADV-2006-2957",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/2957"
},
{
"name": "34659",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/34659"
},
{
"name": "SSRT080175",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "ADV-2009-0980",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/0980"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-07-25T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2009-04-16T09:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "1022021",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1022021"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://innermedia.com/upgrades.html"
},
{
"name": "20060725 [vuln.sg] DynaZip DZIP32.DLL/DZIPS32.DLL Buffer Overflow Vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/441083"
},
{
"name": "19143",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/19143"
},
{
"name": "HPSBMA02396",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "53478",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/53478"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://vuln.sg/dynazip5007-en.html"
},
{
"name": "20060725 [vuln.sg] TurboZIP ZIP Repair Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/441084"
},
{
"name": "21180",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/21180"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://vuln.sg/turbozip6-en.html"
},
{
"name": "ADV-2006-2957",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/2957"
},
{
"name": "34659",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/34659"
},
{
"name": "SSRT080175",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "ADV-2009-0980",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/0980"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-4420",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1022021",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1022021"
},
{
"name": "http://innermedia.com/upgrades.html",
"refsource": "MISC",
"url": "http://innermedia.com/upgrades.html"
},
{
"name": "20060725 [vuln.sg] DynaZip DZIP32.DLL/DZIPS32.DLL Buffer Overflow Vulnerabilities",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/441083"
},
{
"name": "19143",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/19143"
},
{
"name": "HPSBMA02396",
"refsource": "HP",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "53478",
"refsource": "OSVDB",
"url": "http://osvdb.org/53478"
},
{
"name": "http://vuln.sg/dynazip5007-en.html",
"refsource": "MISC",
"url": "http://vuln.sg/dynazip5007-en.html"
},
{
"name": "20060725 [vuln.sg] TurboZIP ZIP Repair Buffer Overflow Vulnerability",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/441084"
},
{
"name": "21180",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/21180"
},
{
"name": "http://vuln.sg/turbozip6-en.html",
"refsource": "MISC",
"url": "http://vuln.sg/turbozip6-en.html"
},
{
"name": "ADV-2006-2957",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/2957"
},
{
"name": "34659",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/34659"
},
{
"name": "SSRT080175",
"refsource": "HP",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011"
},
{
"name": "ADV-2009-0980",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/0980"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-4420",
"datePublished": "2009-04-13T16:00:00.000Z",
"dateReserved": "2008-10-03T00:00:00.000Z",
"dateUpdated": "2024-08-07T10:17:09.276Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-4349 (GCVE-0-2007-4349)
Vulnerability from cvelistv5 – Published: 2008-10-23 21:00 – Updated: 2024-08-07 14:53
VLAI
Summary
The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
10 references
| URL | Tags |
|---|---|
| http://securityreason.com/securityalert/4501 | third-party-advisoryx_refsource_SREASON |
| http://marc.info/?l=bugtraq&m=122876677518654&w=2 | vendor-advisoryx_refsource_HP |
| http://www.securitytracker.com/id?1021092 | vdb-entryx_refsource_SECTRACK |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://secunia.com/advisories/27054 | third-party-advisoryx_refsource_SECUNIA |
| http://secunia.com/secunia_research/2007-83/ | x_refsource_MISC |
| http://www.securityfocus.com/archive/1/497648/100… | mailing-listx_refsource_BUGTRAQ |
| http://www.securityfocus.com/bid/31860 | vdb-entryx_refsource_BID |
| http://www.vupen.com/english/advisories/2008/2888 | vdb-entryx_refsource_VUPEN |
| http://marc.info/?l=bugtraq&m=122876827120961&w=2 | vendor-advisoryx_refsource_HP |
Date Public
2008-10-22 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T14:53:55.597Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "4501",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/4501"
},
{
"name": "HPSBMA02391",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876677518654\u0026w=2"
},
{
"name": "1021092",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1021092"
},
{
"name": "ov-traceservice-rpc-dos(46028)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46028"
},
{
"name": "27054",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27054"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://secunia.com/secunia_research/2007-83/"
},
{
"name": "20081022 Secunia Research: HP OpenView Products Shared Trace Service Denial of Service",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/497648/100/0/threaded"
},
{
"name": "31860",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/31860"
},
{
"name": "ADV-2008-2888",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2008/2888"
},
{
"name": "HPSBMA02390",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
},
{
"name": "SSRT071481",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-10-22T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-15T20:57:01.000Z",
"orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
"shortName": "flexera"
},
"references": [
{
"name": "4501",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/4501"
},
{
"name": "HPSBMA02391",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876677518654\u0026w=2"
},
{
"name": "1021092",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1021092"
},
{
"name": "ov-traceservice-rpc-dos(46028)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46028"
},
{
"name": "27054",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27054"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://secunia.com/secunia_research/2007-83/"
},
{
"name": "20081022 Secunia Research: HP OpenView Products Shared Trace Service Denial of Service",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/497648/100/0/threaded"
},
{
"name": "31860",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/31860"
},
{
"name": "ADV-2008-2888",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2008/2888"
},
{
"name": "HPSBMA02390",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
},
{
"name": "SSRT071481",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "PSIRT-CNA@flexerasoftware.com",
"ID": "CVE-2007-4349",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The Shared Trace Service (aka OVTrace) in HP Performance Agent C.04.70 (aka 4.70), HP OpenView Performance Agent C.04.60 and C.04.61, HP Reporter 3.8, and HP OpenView Reporter 3.7 (aka Report 3.70) allows remote attackers to cause a denial of service via an unspecified series of RPC requests (aka Trace Event Messages) that triggers an out-of-bounds memory access, related to an erroneous object reference."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "4501",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/4501"
},
{
"name": "HPSBMA02391",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=122876677518654\u0026w=2"
},
{
"name": "1021092",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1021092"
},
{
"name": "ov-traceservice-rpc-dos(46028)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46028"
},
{
"name": "27054",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/27054"
},
{
"name": "http://secunia.com/secunia_research/2007-83/",
"refsource": "MISC",
"url": "http://secunia.com/secunia_research/2007-83/"
},
{
"name": "20081022 Secunia Research: HP OpenView Products Shared Trace Service Denial of Service",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/497648/100/0/threaded"
},
{
"name": "31860",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/31860"
},
{
"name": "ADV-2008-2888",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2008/2888"
},
{
"name": "HPSBMA02390",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
},
{
"name": "SSRT071481",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=122876827120961\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
"assignerShortName": "flexera",
"cveId": "CVE-2007-4349",
"datePublished": "2008-10-23T21:00:00.000Z",
"dateReserved": "2007-08-14T00:00:00.000Z",
"dateUpdated": "2024-08-07T14:53:55.597Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}