CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1454 matches found

Exploit DB•added 2014/02/16 12:0 a.m.•48 views

HP Data Protector - 'EXEC_BAR' Remote Command Execution

import argparse import socket """ Exploit Title: HP Data Protector EXECBAR Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-2347 Date: February 14, 2014 Vendor Homepage: www.hp.com Version: 6.10, 6.11, 6.20 Tested On: Windows Server 2003, Windows Server 2008 R2...

10CVSS6.4AI score0.66409EPSS

Exploits14

OpenVAS•added 2014/02/11 12:0 a.m.•69 views

HP (OpenView Storage) Data Protector Backup Client Service Directory Traversal

HP OpenView Storage Data Protector is prone to a directory traversal vulnerability which might lead to execution of arbitrary code. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

10CVSS6.6AI score0.65924EPSS

Exploits10References3

Saint•added 2014/01/28 12:0 a.m.•40 views

HP Data Protector Backup Client Service opcode 42 directory traversal

Added: 01/28/2014 CVE: CVE-2013-6194 BID: 64647 OSVDB: 101630 Background HP OpenView Storage Data Protector is a backup solution for enterprise and distributed environments. Problem A vulnerability in the Backup Client Service OmniInet.exe allows remote, unauthenticated attackers to write files t...

10CVSS7.4AI score0.65924EPSS

Exploits10

Saint•added 2014/01/28 12:0 a.m.•33 views

HP Data Protector Backup Client Service opcode 42 directory traversal

10CVSS7.4AI score0.65924EPSS

Exploits10

Saint•added 2014/01/28 12:0 a.m.•38 views

HP Data Protector Backup Client Service opcode 42 directory traversal

10CVSS7.4AI score0.65924EPSS

Exploits10

Saint•added 2014/01/28 12:0 a.m.•26 views

HP Data Protector Backup Client Service opcode 42 directory traversal

10CVSS7.4AI score0.65924EPSS

Exploits10

Exploit DB•added 2014/01/24 12:0 a.m.•31 views

HP Data Protector - Backup Client Service Directory Traversal (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Data Protector Backup Client Service Directory Traversal', 'Description' = %q This module exploits a directory traversal...

10CVSS7.4AI score0.65924EPSS

Exploits10

Packet Storm•added 2014/01/21 12:0 a.m.•40 views

HP Data Protector Backup Client Service Directory Traversal

10CVSS0.5AI score0.65924EPSS

Exploits10

0day.today•added 2014/01/21 12:0 a.m.•64 views

HP Data Protector Backup Client Service Directory Traversal

This Metasploit module exploits a directory traversal vulnerability in the Hewlett-Packard Data Protector product. The vulnerability exists at the Backup Client Service OmniInet.exe when parsing packets with opcode 42. This Metasploit module has been tested successfully on HP Data Protector 6.20 ...

10CVSS6.3AI score0.65924EPSS

Exploits10

Metasploit•added 2014/01/16 11:49 p.m.•26 views

HP Data Protector Backup Client Service Directory Traversal

This module exploits a directory traversal vulnerability in the Hewlett-Packard Data Protector product. The vulnerability exists in the Backup Client Service OmniInet.exe and is triggered when parsing packets with opcode 42. This module has been tested successfully on HP Data Protector 6.20 on...

10CVSS6.9AI score0.65924EPSS

Exploits10

Zero Day Initiative•added 2014/01/10 12:0 a.m.•664 views

Hewlett-Packard Data Protector Backup Client Service Opcode 45 and 46 Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute remote code on vulnerable installations of HP Data Protector. Authentication is not required to exploit this vulnerability. This specific flaw exists in the Backup Client Service OmniInet.exe. The Backup Client Service listens on TCP port 5555...

10CVSS5.9AI score0.10436EPSS

Exploits1References1

Zero Day Initiative•added 2014/01/10 12:0 a.m.•25 views

Hewlett-Packard Data Protector Backup Client Service rbda Remote Code Execution Vulnerability

This vulnerability allows remote attackers directory traversal on vulnerable installations of HP OpenView Data Protector. Authentication is not required to exploit this vulnerability. This specific flaw exists in the Backup Client Service OmniInet.exe. The Backup Client Service listens on TCP por...

10CVSS6AI score0.10436EPSS

Exploits1References1

Zero Day Initiative•added 2014/01/10 12:0 a.m.•31 views

Hewlett-Packard Data Protector Backup Client Service EXEC_BAR Remote Code Execution Vulnerability

10CVSS5.4AI score0.66409EPSS

Exploits14References1

Zero Day Initiative•added 2014/01/10 12:0 a.m.•49 views

Hewlett-Packard Data Protector Cell Manager crs.exe Multiple Opcodes Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector. Authentication is not required to exploit this vulnerability. The specific flaw exists within crs.exe which listens by default on a random TCP port. When parsing opcodes 214, 215...

7.5CVSS4.9AI score0.10436EPSS

Exploits1References1

Zero Day Initiative•added 2014/01/10 12:0 a.m.•18 views

Hewlett-Packard Data Protector Backup Client Service rrda Remote Code Execution Vulnerability

10CVSS5.7AI score0.10436EPSS

Exploits1References1

Zero Day Initiative•added 2014/01/10 12:0 a.m.•64 views

Hewlett-Packard Data Protector Backup Client Service vrda Remote Code Execution Vulnerability

10CVSS5.6AI score0.10436EPSS

Exploits1References1

Zero Day Initiative•added 2014/01/10 12:0 a.m.•31 views

Hewlett-Packard Data Protector Backup Client Service Opcode 42 Remote Code Execution Vulnerability

10CVSS5.9AI score0.65924EPSS

Exploits10References1

Zero Day Initiative•added 2014/01/10 12:0 a.m.•35 views

Hewlett-Packard Data Protector Backup Client Service RxNtSetup Remote Code Execution Vulnerability

10CVSS5.5AI score0.10436EPSS

Exploits1References1

securityvulns•added 2014/01/08 12:0 a.m.•36 views

HP Data Protector multiple security vulnerabilities

Code execution, privilege escalation, DoS...

10CVSS2.8AI score0.66409EPSS

Exploits23References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•69 views

[security bulletin] HPSBMU02895 SSRT101253 rev.1 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03822422 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03822422 Version: 1 HPSBMU02895...

10CVSS1AI score0.66409EPSS

Exploits23

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by