CVE-2011-3162
HP Data Protector Notebook Extension 6.20 and HP Data Protector for Personal Computers 7.0 are affected by an SQL injection vulnerability in the dpnepolicyservice FinishedCopy method, exposed via a DPNECentral Web Service on TCP port 80. A remote attacker can craft requests with an unsafely used ...