Vulnerabilities > CVE-2009-3841 - Remote Code Execution vulnerability in HP Discovery and Dependency Mapping Inventory

CVSS 9.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

microsoft

critical

NVD

Published: 2009-11-17

Updated: 2009-11-24

Summary

Unspecified vulnerability in HP Discovery & Dependency Mapping Inventory (DDMI) 2.5x, 7.5x, and 7.60 on Windows allows remote authenticated users to execute arbitrary code via unknown vectors.

Vulnerable Configurations

Part	Description	Count
Application	Hp HP Discovery&Dependency Mapping Inventory 2.50 HP Discovery&Dependency Mapping Inventory 2.51 HP Discovery&Dependency Mapping Inventory 2.52 HP Discovery&Dependency Mapping Inventory 7.50 HP Discovery&Dependency Mapping Inventory 7.51 HP Discovery&Dependency Mapping Inventory 7.60	6
OS	Microsoft Microsoft Windows *	1

References

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01861595
http://osvdb.org/60222
http://secunia.com/advisories/37388
http://securitytracker.com/id?1023187
http://www.securityfocus.com/bid/37037