HP Database Archiving Software GIOP Opcode Buffer Overflow (CVE-2011-4163)
| Check Point Reference: | CPAI-2012-374 | |
| Date Published: | ||
| Severity: | ||
| Source: | HP | |
| Industry Reference(s): | CVE-2011-4163 |
|
| Protection Provided by: |
Security Gateway
|
|
|
Who is Vulnerable? HP Database Archiving Software v6.31 |
||
| Vulnerability Description A remote code execution vulnerability has been reported in HP Database Archiving Software. |
||
|
Vulnerability Details The vulnerability is due to a buffer overflow while handling GIOP requests containing specially crafted values. A remote attacker can exploit this issue by sending a specially crafted GIOP request message to the target. Successful exploitation would allow an attacker to execute arbitrary code on the target server. |
Protection Overview
This protection will detect and block the transferring of malicious GIOP requests to the server.
In order for the protection to be activated, update your product to the latest update. For information on how to update , go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.