header-logo
Suggest Exploit
vendor:
OpenView Radia Notify Daemon
by:
SecurityFocus
9.3
CVSS
HIGH
Remote Buffer Overflow
119
CWE
Product Name: OpenView Radia Notify Daemon
Affected Version From: Not specified
Affected Version To: Not specified
Patch Exists: YES
Related CWE: CVE-2004-0991
CPE: a:hp:openview_radia_notify_daemon
Metasploit: https://www.rapid7.com/db/vulnerabilities/freebsd-vid-3cc84400-6576-11d9-a9e7-0001020eed82/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2004-0991/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Not specified
2004

HP OpenView Radia Notify Daemon (RADEXECD) Remote Buffer Overflow Vulnerabilities

HP OpenView Radia Notify Daemon (RADEXECD) is affected by multiple remote buffer overflow vulnerabilities. An attacker can craft a malicious request that can overflow a buffer and result in process memory corruption. These issues may be exploited to gain unauthorized access in the context of the server. The proof of concept involves sending a malicious request containing a buffer of 0x90 characters, a return address, and shellcode.

Mitigation:

Upgrade to the latest version of HP OpenView Radia Notify Daemon (RADEXECD).
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/13835/info

HP OpenView Radia Notify Daemon (RADEXECD) is affected by multiple remote buffer overflow vulnerabilities.

An attacker can craft a malicious request that can overflow a buffer and result in process memory corruption. These issues may be exploited to gain unauthorized access in the context of the server. 

The following proof of concept is available:
<callback port>\0<username>\0<password>\0
"LIST " . (0x90 x <offset>) . <ret_addr> . "." . <shellcode>

Navigation

Suggest Exploit

Services By CQR