Overview
The Compaq web-enabled management software contains a buffer overflow in the SNMP and DMI functionality. Remote intruders may be able to execute arbitrary code with privileges on affected systems. All versions of Compaq Insight Manager XE are affected, but Compaq Insight Manager windows console and Compaq Managment agents are not affected.
Description
There is a buffer overflow in the SNMP and DMI functionality of the Compaq Insight Manager XE product. Compaq has produced a security advisory describing this problem at |
Impact
A remote attacker may be able to execute arbitrary code with privileges on systems running the vulnerable software. |
Solution
Apply a Patch
|
Disable the Web-Enabled Management Software |
Vendor Information
CVSS Metrics
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
References
Acknowledgements
The CERT/CC thanks Compaq for their advisory on this topic.
This document was written by Cory F. Cohen.
Other Information
CVE IDs: | None |
Severity Metric: | 7.48 |
Date Public: | 2001-10-30 |
Date First Published: | 2001-11-19 |
Date Last Updated: | 2001-11-19 20:45 UTC |
Document Revision: | 11 |