What is CVE-2009-3844?

CVE-2009-3844 is a vulnerability in N/a. Published 2009-12-08.

Is CVE-2009-3844 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-3844

Stack-based buffer overflow in the OmniInet process in HP OpenView Data Protector Application Recovery Manager 5.50 and 6.0 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted MSG_PROTOCOL packet.

EPSS: 0.766 (99.0th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

openview-dparm-omniinet-bo(54638) (vdb-entry, x_refsource_XF)
SSRT090113 (x_refsource_HP, vendor-advisory)
ADV-2009-3454 (vdb-entry, x_refsource_VUPEN)
20091208 ZDI-09-091: Hewlett-Packard Application Recovery Manager MSG_PROTOCOL Stack Overflow Vulnerability (mailing-list, x_refsource_BUGTRAQ)
37250 (vdb-entry, x_refsource_BID)
37600 (x_refsource_SECUNIA, third-party-advisory)
zerodayinitiative.com/advisories/ZDI-09-091/ (x_refsource_MISC)
1023288 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2009-3844?: CVE-2009-3844 is a vulnerability in N/a. Published 2009-12-08.
Is CVE-2009-3844 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.