896 matches found
HP Data Protector 8.10 Remote Command Execution
This module exploits a remote command execution on HP Data Protector 8.10. Arbitrary commands can be executed by sending crafted requests with opcode 28 to the OmniInet service listening on the TCP/5555 port. Since there is a strict length limitation on the command, rundll32.exe is executed, and...
HP Data Protector Windows Unauthenticated Remote Code Execution
Added: 02/18/2015 CVE: CVE-2014-2623 BID: 68672 OSVDB: 109069 Background HP Data Protector is a backup solution for enterprise and distributed environments. Data Protector Manager listens on port 5555/TCP. Problem HP Data Protector is vulnerable to remote unauthenticated arbitrary command executi...
HP Data Protector Windows Unauthenticated Remote Code Execution
Added: 02/18/2015 CVE: CVE-2014-2623 BID: 68672 OSVDB: 109069 Background HP Data Protector is a backup solution for enterprise and distributed environments. Data Protector Manager listens on port 5555/TCP. Problem HP Data Protector is vulnerable to remote unauthenticated arbitrary command executi...
HP Data Protector Windows Unauthenticated Remote Code Execution
Added: 02/18/2015 CVE: CVE-2014-2623 BID: 68672 OSVDB: 109069 Background HP Data Protector is a backup solution for enterprise and distributed environments. Data Protector Manager listens on port 5555/TCP. Problem HP Data Protector is vulnerable to remote unauthenticated arbitrary command executi...
HP Data Protector Windows Unauthenticated Remote Code Execution
Added: 02/18/2015 CVE: CVE-2014-2623 BID: 68672 OSVDB: 109069 Background HP Data Protector is a backup solution for enterprise and distributed environments. Data Protector Manager listens on port 5555/TCP. Problem HP Data Protector is vulnerable to remote unauthenticated arbitrary command executi...
HP Data Protector Unauthenticated Remote Code Execution
Added: 02/10/2015 CVE: CVE-2014-2623 BID: 68672 OSVDB: 109069 Background HP Data Protector is a backup solution for enterprise and distributed environments. Data Protector Manager listens on port 5555/TCP. Problem HP Data Protector is vulnerable to remote unauthenticated arbitrary command executi...
HP Data Protector Unauthenticated Remote Code Execution
Added: 02/10/2015 CVE: CVE-2014-2623 BID: 68672 OSVDB: 109069 Background HP Data Protector is a backup solution for enterprise and distributed environments. Data Protector Manager listens on port 5555/TCP. Problem HP Data Protector is vulnerable to remote unauthenticated arbitrary command executi...
HP Data Protector Unauthenticated Remote Code Execution
Added: 02/10/2015 CVE: CVE-2014-2623 BID: 68672 OSVDB: 109069 Background HP Data Protector is a backup solution for enterprise and distributed environments. Data Protector Manager listens on port 5555/TCP. Problem HP Data Protector is vulnerable to remote unauthenticated arbitrary command executi...
HP Data Protector Unauthenticated Remote Code Execution
Added: 02/10/2015 CVE: CVE-2014-2623 BID: 68672 OSVDB: 109069 Background HP Data Protector is a backup solution for enterprise and distributed environments. Data Protector Manager listens on port 5555/TCP. Problem HP Data Protector is vulnerable to remote unauthenticated arbitrary command executi...
HP-Data-Protector-8.x
Exploit Title: HP-Data-Protector-8.x Remote command execution. Google Dork: - Date: 30/01/2015 Exploit Author: Juttikhun Khamchaiyaphum Vendor Homepage: https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emrna-c04373818 Software Link:...
HP Data Protector 8.x - Remote Command Execution
HP Data Protector 8.x - Remote Command Execution !/usr/bin/python Exploit Title: HP-Data-Protector-8.x Remote command execution. Google Dork: - Date: 30/01/2015 Exploit Author: Juttikhun Khamchaiyaphum Vendor Homepage: https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emrna-c04373818...
HP Data Protector 8.x - Remote Command Execution
!/usr/bin/python Exploit Title: HP-Data-Protector-8.x Remote command execution. Google Dork: - Date: 30/01/2015 Exploit Author: Juttikhun Khamchaiyaphum Vendor Homepage: https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emrna-c04373818 Software Link:...
HP-Data-Protector-A.06.20
This script allows to execute a command with an arbitrary number of arguments. The trick calls 'perl.exe' interpreter installed with HP Data Protector inside the directory installpath/bin/. The main goal of the script is to bypass the limitation of executing only a single command without any...
HP-Data-Protector-EXEC_BAR
The omniinet service, which runs by default on port 5555, is susceptible to numerous remotely exploitable vulnerabilities. By sending a malicious EXECBAR packet opcode 11, a remote attacker can force the omniinet service to run an arbitrary command. On Windows, the omniinet service is running as...
HP Data Protector Opcode 45 and 46 Code Execution - Ver2 (CVE-2013-2348)
Multiple vulnerabilities have been reported in HP Data Protector. Both vulnerabilities are due to insufficient input validation on a string supplied with a message containing opcodes 45 or 46. A remote unauthenticated attacker could exploit this vulnerability by sending a crafted request to the...
HP Data Protector EXEC_INTEGUTIL Remote Code Execution
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = GreatRanking include Msf::Exploit::Remote::Tcp include...
HP Data Protector 'EXEC_INTEGUTIL' Arbitrary Command Execution
Binary data hpdataprotectorzdi14344.nbin...
HP Data Protector EXEC_INTEGUTIL Remote Code Execution
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Data Protector EXECINTEGUTIL Remote Code Execution', 'Description' = %q This exploit abuses a vulnerability in the HP Data...
HP Data Protector EXEC_INTEGUTIL Remote Code Execution Exploit
This exploit abuses a vulnerability in the HP Data Protector. The vulnerability exists in the Backup client service, which listens by default on TCP/5555. The EXECINTEGUTIL request allows to execute arbitrary commands from a restricted directory. Since it includes a perl executable, it's possible...
HP Data Protector - 'EXEC_INTEGUTIL' Remote Code Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Data Protector EXECINTEGUTIL Remote Code Execution', 'Description' = %q This exploit abuses a vulnerability in the HP Data...