CVE-2012-3278

Name of the Vulnerable Software and Affected Versions HP Diagnostics Server versions 8.x through 8.07 HP Diagnostics Server versions 9.x through 9.21

Description The issue is a stack-based buffer overflow in the magentservice.exe component. This allows remote attackers to execute arbitrary code via a malformed message packet.

Recommendations For HP Diagnostics Server versions 8.x through 8.07, update to a version outside of this range to resolve the issue. For HP Diagnostics Server versions 9.x through 9.21, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the magentservice.exe component to minimize the risk of exploitation.