Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via a large value in the size parameter.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| 1023361 | |||
| ADV-2009-3594 | |||
| 37386 | |||
| HPSBMA02252 | |||
| SSRT061259 | |||
| SSRT061258 | |||
| http://dvlabs.tippingpoint.com/advisory/TPTI-09-15 |