Intrusion Prevention

HP.OpenView.CCM.Radia.Notify.Daemon.Code.Execution

Description

This indicates a possible exploit of a code-execution vulnerability in HP OpenView Client Configuraton Manager (CCM).
The vulnerability is due to a design error in the authentication process in the Radia Notify Daemon (port 3465/TCP). A remote attacker may cause the affected device to reboot by launching "radbootw.exe", or execute arbitrary code by launching "radcrecv.exe".

Affected Products

HP OpenView Client Configuration Manager (CCM) version 1.0

Impact

Denial of service, remote code execution.

Recommended Actions

Upgrade to HP OpenView Client Configuration Manager (CCM) version 2.0 :
http://h20229.www2.hp.com/products/ccm/download.html

CVE References

CVE-2006-5782