TFTP: HPE Intelligent Management Center PLAT tftpserver fread Stack Buffer Overflow
This signature detects attempt to exploit a stack buffer overflow vulnerability which has been reported in HPE Intelligent Management Center PLAT (iMC PLAT). A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted packet to the target application. Successful exploitation could results in arbitrary code execution under the context of the SYSTEM or root user.
Extended Description
A remote code execution vulnerability was identified in HPE Intelligent Management Center (iMC) PLAT 7.3 E0506P07. The vulnerability was resolved in iMC PLAT 7.3 E0605P04 or subsequent version.
Affected Products
Hp intelligent_management_center
References
CVE: CVE-2018-7074
Short Name
TFTP:HPE-IMC-PLAT-BO
Severity
Major
Recommended
True
Recommended Action
Drop
Category
TFTP
Keywords
Buffer CVE-2018-7074 Center HPE Intelligent Management Overflow PLAT Stack fread tftpserver
Release Date
10/01/2018
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3337
False Positive
Unknown
Vendors
Hp
CVSS Score
7.5