Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-2347
HistoryJan 04, 2014 - 4:51 a.m.

CVE-2013-2347

2014-01-0404:51:17
[email protected]
web.nvd.nist.gov
5

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

High

EPSS

0.439

Percentile

97.4%

JSON

The Backup Client Service (OmniInet.exe) in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary commands or cause a denial of service via a crafted EXEC_BAR packet to TCP port 5555, aka ZDI-CAN-1885.

Affected configurations

Nvd
Node
hpstorage_data_protectorMatch6.20-hp-ux
OR
hpstorage_data_protectorMatch6.20-redhat_enterprise_linux
OR
hpstorage_data_protectorMatch6.20-solaris
OR
hpstorage_data_protectorMatch6.20-windows_server_2003
OR
hpstorage_data_protectorMatch6.20-windows_server_2008
OR
hpstorage_data_protectorMatch6.21-hp-ux
OR
hpstorage_data_protectorMatch6.21-redhat_enterprise_linux
OR
hpstorage_data_protectorMatch6.21-solaris
OR
hpstorage_data_protectorMatch6.21-windows_server_2003
OR
hpstorage_data_protectorMatch6.21-windows_server_2008
VendorProductVersionCPE
hpstorage_data_protector6.20cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:hp-ux:*:*
hpstorage_data_protector6.20cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:redhat_enterprise_linux:*:*
hpstorage_data_protector6.20cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:solaris:*:*
hpstorage_data_protector6.20cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2003:*:*
hpstorage_data_protector6.20cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2008:*:*
hpstorage_data_protector6.21cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:hp-ux:*:*
hpstorage_data_protector6.21cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:redhat_enterprise_linux:*:*
hpstorage_data_protector6.21cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:solaris:*:*
hpstorage_data_protector6.21cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:windows_server_2003:*:*
hpstorage_data_protector6.21cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:windows_server_2008:*:*

Related

cvelist 1
metasploit 1
zdt 2
saint 4
packetstorm 2
zdi 1
exploitdb 2
checkpoint_advisories 2
seebug 2
cve 1
exploitpack 1
prion 1
securityvulns 2
nessus 3
openvas 1
cvelist
cvelist
CVE-2013-2347
2014-01-04 02:00:00
metasploit
metasploit
HP Data Protector Backup Client Service Remote Code Execution
2014-03-05 09:25:13
zdt
zdt
HP Data Protector Backup Client Service Remote Code Execution Exploit
2014-03-10 00:00:00
HP Data Protector Backup Client Service Remote Code Execution
2014-03-06 00:00:00
saint
saint
HP Data Protector Backup Client Service EXEC_BAR Packet Vulnerability
2014-03-21 00:00:00
HP Data Protector Backup Client Service EXEC_BAR Packet Vulnerability
2014-03-21 00:00:00
HP Data Protector Backup Client Service EXEC_BAR Packet Vulnerability
2014-03-21 00:00:00
packetstorm
packetstorm
HP Data Protector EXEC_BAR Remote Command Execution
2014-02-17 00:00:00
HP Data Protector Backup Client Service Remote Code Execution
2014-03-06 00:00:00
zdi
zdi
Hewlett-Packard Data Protector Backup Client Service EXEC_BAR Remote Code Execution Vulnerability
2014-01-10 00:00:00
exploitdb
exploitdb
HP Data Protector - 'EXEC_BAR' Remote Command Execution
2014-02-16 00:00:00
HP Data Protector - Backup Client Service Remote Code Execution (Metasploit)
2014-03-10 00:00:00
checkpoint_advisories
checkpoint_advisories
HP Data Protector EXEC_BAR Command Execution (CVE-2013-2347)
2014-03-12 00:00:00
HP Data Protector Opcode 28 and 11 Command Execution (CVE-2013-2347; CVE-2014-2623)
2014-08-06 00:00:00
seebug
seebug
HP Data Protector EXEC_BAR Remote Command Execution
2014-07-01 00:00:00
HP Storage Data Protectorๅคšไธชๅฎ‰ๅ…จๆผๆดž
2014-01-06 00:00:00
cve
cve
CVE-2013-2347
2014-01-04 04:51:17
exploitpack
exploitpack
HP Data Protector - EXEC_BAR Remote Command Execution
2014-02-16 00:00:00
prion
prion
Design/Logic Flaw
2014-01-04 04:51:00
securityvulns
securityvulns
[security bulletin] HPSBMU02895 SSRT101253 rev.1 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary Code
2014-01-08 00:00:00
HP Data Protector multiple security vulnerabilities
2014-01-08 00:00:00
nessus
nessus
HP Data Protector Multiple Vulnerabilities (HPSBMU02895 SSRT101253)
2014-01-06 00:00:00
HP-UX PHSS_43890 : s700_800 11.X OV DP7.00 HP-UX IA/PA - Core patch
2014-04-27 00:00:00
HP-UX PHSS_43889 : s700_800 11.X OV DP7.00 HP-UX IA/PA - Cell Server patch
2014-04-27 00:00:00
openvas
openvas
HP (OpenView Storage) Data Protector Multiple Vulnerabilities
2014-02-18 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

High

EPSS

0.439

Percentile

97.4%

JSON
Related for NVD:CVE-2013-2347
cvelist1metasploit1zdt2saint4packetstorm2zdi1exploitdb2checkpoint_advisories2seebug2cve1exploitpack1prion1securityvulns2nessus3openvas1