Stack-based buffer overflow in the agent in Persistent Accelerite Radia Client Automation (formerly HP Client Automation), possibly before 9.1, allows remote attackers to execute arbitrary code by sending a large amount of data in an environment that lacks relationship-based firewalling.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| accelerite | radia_client_automation | 7.9 |
| accelerite | radia_client_automation | 8.1 |
| accelerite | radia_client_automation | 9.1 |
| accelerite | radia_client_automation | 9.0 |
Persistent Accelerite Radia Client Automation (formerly HP Client Automation), possibly before 9.1, allows remote attackers to execute arbitrary code by sending unspecified commands in an environment that lacks relationship-based firewalling.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| accelerite | radia_client_automation | 7.9 |
| accelerite | radia_client_automation | 8.1 |
| accelerite | radia_client_automation | 9.1 |
| accelerite | radia_client_automation | 9.0 |
Persistent Accelerite Radia Client Automation (formerly HP Client Automation) 7.9 through 9.1 before 2015-02-19 improperly implements the Role Based Access Control feature, which might allow remote attackers to modify an account's role assignments via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| accelerite | radia_client_automation | 7.9 |
| accelerite | radia_client_automation | 8.1 |
| accelerite | radia_client_automation | 9.1 |
| accelerite | radia_client_automation | 9.0 |
The default configuration of Persistent Accelerite Radia Client Automation (formerly HP Client Automation) 7.9 through 9.1 before 2015-02-19 enables a remote Notify capability without the Extended Notify Security features, which might allow remote attackers to bypass intended access restrictions via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-254,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| accelerite | radia_client_automation | 7.9 |
| accelerite | radia_client_automation | 8.1 |
| accelerite | radia_client_automation | 9.1 |
| accelerite | radia_client_automation | 9.0 |