CVE-2007-2281

critical

HPE

CVSS v3 Base Score

10.0

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS Score

7.1%

Exploitation probability in 30 days

Top 8% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

Integrity

Availability

Published: December 18, 2009 (5991 days ago)

Last Modified: April 23, 2026

Vendor: HPE

Source: NVD

Description

Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via a large value in the size parameter.

CWE

CWE-189

Affected Products

hp openview storage data protector

References

🔗 dvlabs.tippingpoint.com 🔗 marc.info 🔗 securitytracker.com 🔗 www.securityfocus.com 🔗 www.vupen.com

CVE-2007-2281

Vulnerability Report

Description

CWE

Affected Products

References