CVE-2009-3999
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
20/01/2010
Last modified:
11/04/2025
Description
Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter.
Impact
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:hp:power_manager:*:*:*:*:*:*:*:* | 4.2.9 (including) | |
| cpe:2.3:a:hp:power_manager:4.2.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:hp:power_manager:4.2.6:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://marc.info/?l=bugtraq&m=126393370331959&w=2
- http://marc.info/?l=bugtraq&m=126393370331959&w=2
- http://secunia.com/advisories/37280
- http://secunia.com/secunia_research/2009-47/
- http://securityreason.com/securityalert/8482
- http://securitytracker.com/id?1023470=
- http://www.securityfocus.com/bid/37867
- http://marc.info/?l=bugtraq&m=126393370331959&w=2
- http://marc.info/?l=bugtraq&m=126393370331959&w=2
- http://secunia.com/advisories/37280
- http://secunia.com/secunia_research/2009-47/
- http://securityreason.com/securityalert/8482
- http://securitytracker.com/id?1023470=
- http://www.securityfocus.com/bid/37867