CVE-2012-0121

Unspecified vulnerability in HP Data Protector Express aka DPX 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1392...

CVE-2012-0122

Unspecified vulnerability in HP Data Protector Express aka DPX 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1393...

CVE-2012-0124

Unspecified vulnerability in HP Data Protector Express aka DPX 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors...

CVE-2012-0122

CVE-2012-0122 affects HP Data Protector Express (DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974. The ZDI advisory details a flaw in the dpwinsdr.exe process that listens on TCP port 3817 and has insufficient bounds checking on user-supplied data, allowing remote, unauthenticated att...

CVE-2012-0123

Unspecified vulnerability in HP Data Protector Express aka DPX 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1498...

CVE-2012-0123

HP Data Protector Express (DPX) versions 5.x before 5.0.0 build 59287 and 6.x before 6.0.0 build 11974 are affected by multiple remote vulnerabilities (CVE-2012-0121/0122/0123/0124) leading to arbitrary code execution or DoS. The root cause is a vulnerability in the Windows service components (dp...

CVE-2012-0121

HP Data Protector Express (DPX) versions 5.0.00 prior to build 59287 and 6.0.00 prior to build 11974 contain a stack-based buffer overflow in the dpwindtb.dll handling Opcode 0x320, allowing remote, unauthenticated attackers to execute arbitrary code or cause a DoS. ZDI-12-097/disclosures detail ...

CVE-2012-0124

CVE-2012-0124 refers to a stack/heap issue in HP Data Protector Express (DPX) 5.x and 6.x prior to build 59287/11974, exploitable via the DPX server’s dpwindtb.dll when creating a new folder. The connected data confirms a concrete flaw in the AddObject path used by the New Folder operation (SVC 0...

HP Data Protector Express 6.0.00.11974 dpwintdb.exe Buffer Overflow

Unspecified vulnerability in HP Data Protector Express aka DPX 5.0.00 before build 59287 and 6.0.00 before build 11974 allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1498. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UT...

HP-UX PHSS_41363 : s700_800 11.X OV DP6.11 HP-UX PA-Risc - Core patch

s700800 11.X OV DP6.11 HP-UX PA-Risc - Core patch : The remote HP-UX host is affected by multiple vulnerabilities : - A potential security vulnerability has been identified with HP OpenView Storage Data Protector. The vulnerability could be remotely exploited to execute arbitrary code. HPSBMA0263...

FOCA PRO 3.1 and MetaShield Protector Released

FOCA PRO 3.1 and MetaShield Protector Released Forensic FOCA New latest version of FOCA announced today, in this case a Forensic FOCA. This tool is specially created for forensic analyst, allowing them to crawl metadata from files and to create a powerful time-line of metadata. This information...

HP Data Protector Multiple Products LogClientInstallation SQL Injection (CVE-2011-3156)

An SQL injection vulnerability has been reported in HP Data Protector Notebook Extension and HP Data Protector for Personal Computers...

HP Data Protector 6.1 EXEC_CMD Remote Code Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

HP Data Protector 6.1 - EXEC_CMD Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'HP Data Protector...

HP Data Protector 6 EXEC_CMD Remote Code Execution

This exploit abuses a vulnerability in the HP Data Protector service. This flaw allows an unauthenticated attacker to take advantage of the EXECCMD command and traverse back to /bin/sh, this allows arbitrary remote code execution under the context of root. This module requires Metasploit:...

HP Data Protector 6.1 EXEC_CMD Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'HP Data Protector...

HP Data Protector Media Operations integer overflow

DBServer.exe integer overflow...

[security bulletin] HPSBMU02739 SSRT100280 rev.1 - HP Data Protector Media Operations, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03179046 Version: 1 HPSBMU02739 SSRT100280 rev.1 - HP Data Protector Media Operations, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as...

HP Data Protector Media Operations Server 'DBServer.exe' Remote Code Execution

According to its version, the installation of HP Data Protector Media Operations Server on the remote host allows an attacker to execute arbitrary code on the affected host with SYSTEM privileges due to a buffer overflow. Note that the vendor reports only Windows installs are affected. C Tenable...

CVE-2011-4791

DBServer.exe in HP Data Protector Media Operations 6.11 and earlier allows remote attackers to execute arbitrary code via a crafted request containing a large value in a length field...