CVE-2011-1736
6.8 Medium
AI Score
Confidence
Low
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:C/I:N/A:P
0.051 Low
EPSS
Percentile
92.9%
Directory traversal vulnerability in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to read arbitrary files via directory traversal sequences in a filename in a GET_FILE message.
References
h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02810240
osvdb.org/72195
secunia.com/advisories/44402
www.securityfocus.com/archive/1/517772/100/0/threaded
www.securityfocus.com/bid/47638
www.securitytracker.com/id?1025454
zerodayinitiative.com/advisories/ZDI-11-152/
exchange.xforce.ibmcloud.com/vulnerabilities/67209
Related
6.8 Medium
AI Score
Confidence
Low
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:C/I:N/A:P
0.051 Low
EPSS
Percentile
92.9%