896 matches found
CVE-2013-2348
CVE-2013-2348 affects HP Data Protector (HP Storage/Data Protector Open View Storage Data Protector). The issue exists in the OmniInet.exe Backup Client Service, which listens on TCP port 5555. A remote attacker can send crafted OmniInet messages (opcode 45/46 per ZDI-14-002) to trigger insuffici...
CVE-2013-6194
Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1905...
CVE-2013-2348
Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1892...
CVE-2013-2347
HP Data Protector Backup Client Service (OmniInet.exe) in HP Data Protector 6.2X is vulnerable to remote command execution via the EXEC_BAR opcode (11) sent to TCP port 5555, enabling an attacker to run arbitrary commands or cause a DoS. Public exploits and proofs of concept exist (e.g., Metasplo...
HP Data Protector CRS Opcode 1091 Stack Buffer Overflow (CVE-2013-2334)
A stack buffer overflow has been reported in HP Data Protector...
HP Data Protector CRS Opcode 264 Stack Buffer Overflow (CVE-2013-2327)
A stack buffer overflow has been discovered in HP Data Protector...
HP Data Protector CRS Opcode 260 Stack Buffer Overflow (CVE-2013-2332)
A stack buffer overflow has been discovered in HP Data Protector...
HP Data Protector Cell Request Service Buffer Overflow
This Metasploit module exploits a stack-based buffer overflow in the Hewlett-Packard Data Protector product. The vulnerability, due to the insecure usage of swprintf, exists at the Cell Request Service crs.exe when parsing packets with opcode 211. This Metasploit module has been tested successful...
HP Data Protector - Cell Request Service Buffer Overflow (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'HP Data Protector Cell Request Servic...
HP Data Protector Cell Request Service Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'HP Data Protector Cell Request Servic...
HP Data Protector CRS Opcode 1092 Stack Buffer Overflow (CVE-2013-2331)
A stack buffer overflow has been discovered in HP Data Protector...
HP Data Protector CRS Opcode 215 and 263 Stack Buffer Overflow (CVE-2013-2328)
Two stack buffer overflows have been discovered in HP Data Protector...
HP Data Protector Cell Request Service Buffer Overflow
This module exploits a stack-based buffer overflow in the Hewlett-Packard Data Protector product. The vulnerability, due to the insecure usage of swprintf, exists at the Cell Request Service crs.exe when parsing packets with opcode 211. This module has been tested successfully on HP Data Protecto...
HP Data Protector CRS Opcode 235 Stack Buffer Overflow (CVE-2013-2325)
A stack buffer overflow has been discovered in HP Data Protector. The vulnerability exists in the Cell Request service crs.exe, which listens on a randomly chosen port. The application fails to sanitize input with opcode 235, which can result in a stack buffer overflow. A remote, unauthenticated...
HP Data Protector CRS Multiple Opcodes Stack Buffer Overflow (CVE-2013-2324)
A buffer overflow vulnerability has been reported in HP Data Protector. The vulnerability exists in the Cell Request Service CRS.exe, which listens on a randomly chosen port. The application fails to sanitize input with opcodes 207, 210, 236, 243, and 265 which can result in a stack buffer...
HP Data Protector CRS Opcode 227 Stack Buffer Overflow (CVE-2013-2335)
A stack buffer overflow vulnerability has been discovered in HP Data Protector. The vulnerability exists in the Cell Request Service crs.exe, which listens on a randomly chosen port. The application fails to sanitize input with opcode 227, which can result in a stack buffer overflow. A remote,...
HP Data Protector code execution
Unauthorized perl commands execution...
HP Data Protector Arbitrary Remote Command Execution
""" HP Data Protector Arbitrary Remote Command Execution This script allows to execute a command with an arbitrary number of arguments. The trick calls 'perl.exe' interpreter installed with HP Data Protector inside the directory installpath/bin/. The main goal of the script is to bypass the...
HP Data Protector Arbitrary Remote Command Execution
This Metasploit module allows execution of a command with an arbitrary number of arguments on Microsoft Windows operating systems. The trick calls a perl.exe interpreter installed with HP Data Protector inside the directory installpath/bin/. The main goal of the script is to bypass the limitation...
HP Data Protector Arbitrary Remote Command Execution
""" HP Data Protector Arbitrary Remote Command Execution This script allows to execute a command with an arbitrary number of arguments. The trick calls 'perl.exe' interpreter installed with HP Data Protector inside the directory installpath/bin/. The main goal of the script is to bypass the...