Unrated severityNVD Advisory· Published Dec 18, 2009· Updated Apr 23, 2026

CVE-2007-2281

Description

Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via a large value in the size parameter.

Affected products

HP/Openview Storage Data Protector2 versions
cpe:2.3:a:hp:openview_storage_data_protector:5.50:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:hp:openview_storage_data_protector:5.50:*:*:*:*:*:*:*
- cpe:2.3:a:hp:openview_storage_data_protector:6.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securitytracker.com/idnvdPatch
dvlabs.tippingpoint.com/advisory/TPTI-09-15nvd
marc.infonvd
www.securityfocus.com/bid/37386nvd
www.vupen.com/english/advisories/2009/3594nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000