HP StorageWorks Storage Mirroring DoubleTake.exe encoded authentication overflow

Added: 06/16/2008
CVE: CVE-2008-1661
OSVDB: 45924

Background

HP StorageWorks is a virtualized storage solution for mid-sized customers.

Problem

A buffer overflow vulnerability in the DoubleTake.exe process allows remote attackers to execute arbitrary commands by sending a long, specially crafted encoded authentication request.

Resolution

Download HP StorageWorks Storage Mirroring 4.5 SP2 or 5.0 or higher.

References

http://archives.neohapsis.com/archives/bugtraq/2008-06/0015.html
http://www.zerodayinitiative.com/advisories/ZDI-08-034/

Limitations

Exploit works on HP StorageWorks Storage Mirroring 4.5.0.1653.

Platforms

Windows

Back to exploit index