HP Data Protector Manager MMD Service Stack Buffer Overflow

2010-12-10T00:00:00
ID SAINT:626031FF41FFEE00A6BCA2D599FCB58E
Type saint
Reporter SAINT Corporation
Modified 2010-12-10T00:00:00

Description

Added: 12/10/2010
BID: 45128

Background

HP Data Protector is a backup solution for enterprise and distributed environments. The Data Protector environment consists of a Cell Manager, backup agents, and backup device servers. The Cell Manager is the central point from which backup agents and device servers are administered, and backup and restore operations are controlled. The Media Management Daemon service (**mmd.exe**) runs on the Data Protector Cell Manager and controls media management and device operations. The Media Management Daemon service listens for incoming connections on a dynamically assigned TCP port. The protocol utilized for communication between the Media Management Daemon service and clients is proprietary and not documented.

Problem

HP Data Protector manager server is vulnerable to a stack buffer overflow due to a boundary error in the Media Management Daemon service when parsing malformed requests.

Resolution

Apply a patch when it becomes available.

References

<http://secunia.com/advisories/41735>

Limitations

Exploit works on HP Data Protector Media Operations 6.11.

The Media Management Daemon service uses a dynamically assigned TCP port in the range 1024 to 65535.

Platforms

Windows