CVE-2012-3253

Multiple unspecified vulnerabilities in HP Intelligent Management Center (IMC) before 5.0 E0101P05 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by an integer overflow and heap-based buffer overflow in img.exe for a crafted message packet.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
hpCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
VendorProductVersion
hpintelligent_management_center
𝑥
≤ 5.0
hpintelligent_management_center
5.0
hpintelligent_management_center
5.0:e0101
hpintelligent_management_center
5.0:e0101h03
hpintelligent_management_center
5.0:e0101l01
hpintelligent_management_center
5.0:e0101l02
𝑥
= Vulnerable software versions
References
http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03473459
http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03473459
http://zerodayinitiative.com/advisories/ZDI-12-164/
http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03473459
http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03473459
http://zerodayinitiative.com/advisories/ZDI-12-164/