1259 matches found
HP Data Protector Multiple Products LogClientInstallation SQL Injection (CVE-2011-3156)
An SQL injection vulnerability has been reported in HP Data Protector Notebook Extension and HP Data Protector for Personal Computers...
NASA Computers Hacked Repeatedly in Last Two Years
NASA has been hit repeatedly by hackers during the last two years – including an incident where attackers compromised systems at the agency’s Jet Propulsion Laboratory. The situation was revealed in testimony Feb. 29 by NASA Inspector General Paul Martin before the House Science, Space and...
HP Data Protector Notebook Extension Policy Server FinishedCopy Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension Policy Server LogClientInstallation Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension Policy Server RequestCopy Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension Policy Server LogCopyOperation Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension Policy Server LogBackupLocationStatus Remote SQL Injection Vulnerabilty
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Notebook Extension. Authentication is not required to exploit this vulnerability. The flaw exists within the dpnepolicyservice component which exposes a DPNECentral Web Service on...
HP Data Protector Notebook Extension multiple security vulnerabilities
No description provided...
CVE-2011-3162
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1296...
CVE-2011-3161
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1229...
CVE-2011-3159
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1227...
CVE-2011-3158
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1226...
CVE-2011-3157
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1225...
Code injection
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1296...
CVE-2011-3157
HP Data Protector Notebook Extension contains a vulnerability in the dpnepolicyservice GetPolicies method that does not properly validate the clientVersion field, enabling remote attackers to execute arbitrary SQL queries as the service user. Affected products include HP Data Protector Notebook E...
CVE-2011-3157
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1225...
CVE-2011-3160
HP Data Protector Notebook Extension has a remote code execution vulnerability (ZDI-1228) affecting dpnepolicyservice via LogCopyOperation. The flaw exists in the DPNECentral Web Service on TCP port 80; the copyStatus field from a user request is used to construct a query without proper validatio...
CVE-2011-3159
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1227...
CVE-2011-3158
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1226...
CVE-2011-3162
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1296...