Lucene search
SAINT CorporationSAINT:6F672B2E7308484FD138841C9E5C8F04HistoryJun 06, 2006 - 12:00 a.m.
HP OpenView OmniBack directory traversal
2006-06-0600:00:00
SAINT Corporation
www.saintcorporation.com
20
EPSS
0.001
Percentile
41.7%
Added: 06/06/2006
CVE: CVE-2001-0311
BID: 11032
OSVDB: 6018
Background
HP OpenView is a suite of tools for managing networks. The OmniBack component provides backup and restoration capabilities.
Problem
A directory traversal vulnerability in the OmniBack service allows a remote attacker to run a command processor outside the defined directory. By specifying the path to a shell interpreter, a remote attacker could gain the ability to execute arbitrary commands.
Resolution
Apply the patch referenced in HPSBUX0102-142.
References
Related
cvelist
cvelist
CVE-2001-0311
2001-05-07 04:00:00
exploitdb
exploitdb
HP OpenView OmniBack II - Generic Remote Command Execution
2000-12-21 00:00:00
HP OpenView OmniBack II A.03.50 - Command Execution (Metasploit)
2001-02-28 00:00:00
HP OpenView OmniBack II - Command Execution (Metasploit)
2010-09-20 00:00:00
saint
saint
HP OpenView OmniBack directory traversal
2006-06-06 00:00:00
HP OpenView OmniBack directory traversal
2006-06-06 00:00:00
HP OpenView OmniBack directory traversal
2006-06-06 00:00:00
nvd
nvd
CVE-2001-0311
2001-06-02 04:00:00
metasploit
metasploit
HP OpenView OmniBack II Command Execution
2008-11-13 09:01:24
cve
cve
CVE-2001-0311
2001-06-02 04:00:00
packetstorm
packetstorm
HP OpenView OmniBack II Command Execution
2009-10-27 00:00:00