Intrusion Prevention

HP.Intelligent.Management.Center.tftpserver.WRQ.Code.Execution

Description

This indicates an attack attempt against a Code Execution vulnerability in HP Intelligent Management Center.
The vulnerability is caused by an error in "tftpserver.exe" when the software handles a specially crafted TFTP request. It allows a remote attacker to execute arbitrary code.

Affected Products

HP Intelligent Management Center (IMC) 5.0_E0101L01
HP Intelligent Management Center (IMC) 5.0_E0101
3Com Intelligent Management Center (IMC) 3.3.9 R2 606
3Com Intelligent Management Center (IMC) 3.3 SP2 R2 606
3Com Intelligent Management Center (IMC) 3.3 SP1 R2 606

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02822750

Other References

2011-1849