SmartDefense Security Advisory

HP Power Manager formExportDataLogs Buffer Overflow Vulnerability

Industry Reference:CVE-2009-3999.

A buffer overflow vulnerability was reported in HP Power Manager. HP Power Manager is a web-based application for managing a HP Uninterruptible Power System (UPS) through a browser-based management console. It allows to monitor, manage, and control a single UPS locally and remotely. The vulnerability is due to insufficient bounds checking in the HP Power Manager while processing URL parameters in the formExportDataLogs form of the web based management server. To leverage the vulnerability, a remote unauthenticated attacker would need to send a malicious HTTP request to the target system, potentially leading to injection and execution of arbitrary code. This protection will detect and block HTTP requests to HP Power Manager forms whose fileName argument is larger than a certain threshold.

IPS-1 & IPS-1 NGX R65: A protection was released in a previous update.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2010-111.

Improvements have been made to the following protections:



Microsoft Windows Media Player SAMI Format Parsing Vulnerability (MS08-033)
CPAI-2008-076.

Microsoft Internet Explorer iepeers.dll Remote Code Execution Vulnerability
CPAI-2010-044.

Microsoft Internet Explorer HTML Object Memory Corruption Vulnerability (MS09-072)
CPAI-2009-249.

Microsoft Vector Markup Language (VML) Vulnerability (MS06-055)
CPAI-2006-128.

Microsoft Office Project Memory Validation Remote Code Execution Vulnerability (MS09-074)
CPAI-2009-261.

Microsoft Internet Explorer 8 Overlap Components Memory Corruption Vulnerability (MS09-072)
CPAI-2009-257.

 March 24, 2010

IPS Software Blade

Buy Now

Guidelines

Forums

SmartDefense Microsoft Security Resources
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe

As always, please feel free to contact us directly if you have any comments or questions.

Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065