Intrusion Prevention

HP.LeftHand.Virtual.SAN.Appliance.Processing.Buffer.Overflow

Description

This indicates an attack attempt against a stack Buffer Overflow in HP LeftHand Virtual SAN Appliance.
The vulnerability is caused by an insufficient input validation error when the vulnerable software handles a malicious Ping request. It allows a remote attacker to execute arbitrary code via a crafted Ping request.

Affected Products

HP LeftHand Virtual SAN Appliance prior to 10.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's website for suggested workaround.
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03661318

CVE References

CVE-2012-3285