Arbitrary Code Execution via Crafted WRQ Request in HP Intelligent Management Center (IMC) 5.0

Arbitrary Code Execution via Crafted WRQ Request in HP Intelligent Management Center (IMC) 5.0

CVE-2011-1849 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote attackers to create or overwrite files, and subsequently execute arbitrary code, via a crafted WRQ request.

Learn more about our Cis Benchmark Audit For Server Software.