HP Device Access Manager Memory Corruption
Severity: : High
CVE Kennungen: : CVE-2011-4162
Advisory Date: 21 de июля de 2015
DESCRIPTION
The (1) AddUser, (2) AddUserEx, (3) RemoveUser, (4) RemoveUserByGuide, (5) RemoveUserEx, and (6) RemoveUserRegardless methods in HP Protect Tools Device Access Manager (PTDAM) before 6.1.0.1 allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a long SidString argument.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004869
Trend Micro Deep Security DPI Rule Name: 1004869 - HP Device Access Manager Memory Corruption
AFFECTED SOFTWARE AND VERSION:
- hp protecttools_device_access_manager 6.0.0.10
- hp protecttools_device_access_manager 6.0.0.12
- hp protecttools_device_access_manager 6.0.0.9