CVE-2012-3274
HP Intelligent Management Center < 5.0 E0102 - UAM Buffer Overflow
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Stack-based buffer overflow in uam.exe in the User Access Manager (UAM) component in HP Intelligent Management Center (IMC) before 5.1 E0101P01 allows remote attackers to execute arbitrary code via vectors related to log data.
Vulnerabilidad de desobrdamiento de búfer basado en pila en uam.exe en el componente User Access Manager (UAM) en HP Intelligent Management Center (IMC) antes de v5.1 E0101P01 permite a atacantes remotos ejecutar código de su elección a través de vectores relacionados con el registro de datos.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-06-06 CVE Reserved
- 2012-08-29 First Exploit
- 2012-12-06 CVE Published
- 2024-09-16 CVE Updated
- 2024-11-01 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://zerodayinitiative.com/advisories/ZDI-12-171 | X_refsource_misc |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/41710 | 2012-08-29 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03589863 | 2012-08-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | <= 5.1 Search vendor "Hp" for product "Intelligent Management Center" and version " <= 5.1" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101h03 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101h04 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101l01 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101l02 |
Affected
| ||||||