HP Database Archiving Software GIOP Opcode Buffer Overflow (CVE-2011-4163)
|Check Point Reference:||CPAI-2012-374|
|Protection Provided by:||
Who is Vulnerable?
HP Database Archiving Software v6.31
A remote code execution vulnerability has been reported in HP Database Archiving Software.
The vulnerability is due to a buffer overflow while handling GIOP requests containing specially crafted values. A remote attacker can exploit this issue by sending a specially crafted GIOP request message to the target. Successful exploitation would allow an attacker to execute arbitrary code on the target server.
This protection will detect and block the transferring of malicious GIOP requests to the server.
In order for the protection to be activated, update your product to the latest update. For information on how to update , go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.