1454 matches found
CVE-2011-1731
HP OpenView Data Protector (Backup Client Service) is affected by a stack-based buffer overflow in OmniInet.exe (EXEC_INTEGUTIL message) that allows remote, unauthenticated code execution. Vulnerable products: HP Data Protector 6.00, 6.10, 6.11 (Windows). The flaw resides in insufficient bounds c...
CVE-2011-1730
HP OpenView Storage Data Protector (HP Data Protector) 6.00/6.10/6.11 Backup Client Service (OmniInet.exe) is affected by a stack-based buffer overflow in the EXEC_SCRIPT handling, allowing remote, unauthenticated code execution under SYSTEM by sending malformed EXEC_SCRIPT packets to the Backup ...
CVE-2011-1736
CVE-2011-1736 affects HP OpenView Storage Data Protector (Backup Client Service) on Windows, specifically the OmniInet.exe component. The flaw is a directory-traversal vulnerability in the Backup Client Service (GET_FILE messages) that allows remote, unauthenticated attackers to read arbitrary fi...
CVE-2011-1735
CVE-2011-1735 describes a stack-based buffer overflow in OmniInet.exe (Backup Client Service) of HP OpenView Storage Data Protector, affecting HP Data Protector 6.00, 6.10, and 6.11. The vulnerability arises from insufficient bounds checking on user-supplied data in a fixed-length buffer, exploit...
CVE-2011-1734
HP OpenView Data Protector affected version 6.00/6.10/6.11 on Windows where the Backup Client Service (OmniInet.exe) processes malformed omniiaputil messages. The root cause is a stack-based buffer overflow in OmniInet.exe that allows unauthenticated, remote code execution, potentially with SYSTE...
CVE-2011-1733
HP OpenView Data Protector 6.00/6.10/6.11 Backup Client Service (OmniInet.exe) suffers a stack-based buffer overflow via malformed HPFGConfig messages, enabling remote code execution on Windows as SYSTEM. The flaw exists in the Backup Client Service (listening on port 5555) and results from insuf...
CVE-2011-1732
CVE-2011-1732 is a confirmed vulnerability in HP OpenView Storage Data Protector’s Backup Client Service (OmniInet.exe). The issue is a stack-based/buffer overflow in the handling of stutil messages, allowing unauthenticated, remote code execution on affected Windows installations (Data Protector...
CVE-2011-1729
HP OpenView Storage Data Protector Backup Client Service (OmniInet.exe) on Windows is vulnerable to a stack-based buffer overflow when processing GET_FILE messages, enabling remote code execution by unauthenticated attackers. Affected versions include Data Protector 6.00, 6.10, and 6.11. The issu...
CVE-2011-1728
HP Data Protector (OpenView Storage Data Protector) Backup Client Service OmniInet.exe on Windows (Data Protector versions 6.00, 6.10, 6.11) is affected by a stack-based buffer overflow triggered by malformed EXEC_BAR messages. This unauthenticated remote code execution flaw can allow an attacker...
CVE-2011-1730
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed EXECSCRIPT message...
CVE-2011-1729
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed GETFILE message...
CVE-2011-1736
Directory traversal vulnerability in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to read arbitrary files via directory traversal sequences in a filename in a GETFILE message...
HP Data Protector Remote Command Execution
Binary data hpdataprotectorcommandexecution.nbin...
ZDI-11-149: HP Data Protector Backup Client Service HPFGConfig Remote Code Execution Vulnerability
ZDI-11-149: HP Data Protector Backup Client Service HPFGConfig Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-149 April 29, 2011 -- CVE ID: CVE-2011-1733 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products:...
ZDI-11-150: HP Data Protector Backup Client Service omniiaputil Message Processing Remote Code Execution Vulnerability
ZDI-11-150: HP Data Protector Backup Client Service omniiaputil Message Processing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-150 April 29, 2011 -- CVE ID: CVE-2011-1734 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard --...
HP Data Protector multiple security vulnerabilities
Multiple vulnerabilities are unpatched for 180 days...
ZDI-11-148: HP Data Protector Backup Client Service stutil Message Processing Remote Code Execution Vulnerability
ZDI-11-148: HP Data Protector Backup Client Service stutil Message Processing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-148 April 29, 2011 -- CVE ID: CVE-2011-1732 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected...
ZDI-11-144: HP Data Protector Backup Client Service EXEC_BAR Remote Code Execution Vulnerability
ZDI-11-144: HP Data Protector Backup Client Service EXECBAR Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-144 April 29, 2011 -- CVE ID: CVE-2011-1728 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products:...
ZDI-11-146: HP Data Protector Backup Client Service EXEC_SCRIPT Remote Code Execution Vulnerability
ZDI-11-146: HP Data Protector Backup Client Service EXECSCRIPT Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-146 April 29, 2011 -- CVE ID: CVE-2011-1730 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products:...
ZDI-11-147: HP Data Protector Backup Client Service EXEC_INTEGUTIL Remote Code Execution Vulnerability
ZDI-11-147: HP Data Protector Backup Client Service EXECINTEGUTIL Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-147 April 29, 2011 -- CVE ID: CVE-2011-1731 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products:...