subject:"ZDI\-12\-088 \: HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability"

Re: ZDI-12-088 : HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability

2012-06-12 Thread Steve Shockley

On 6/6/2012 7:20 PM, ZDI Disclosures wrote: - -- Disclosure Timeline: 2011-06-01 - Vulnerability reported to vendor 2012-06-06 - Coordinated public release of advisory What happened to the "ZDI 180 day disclosure policy"?

ZDI-12-088 : HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability

2012-06-07 Thread ZDI Disclosures

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ZDI-12-088 : HP DataDirect OpenAccess GIOP Opcode 0x0E Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-088 June 6, 2012 - -- CVE ID: CVE-2011-4163 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected