12 matches found
HP Data Protector Backup Client Service Remote Code Execution
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::Tcp include...
HP-UX PHSS_43890 : s700_800 11.X OV DP7.00 HP-UX IA/PA - Core patch
s700800 11.X OV DP7.00 HP-UX IA/PA - Core patch : Potential security vulnerabilities have been identified with HP Data Protector. These vulnerabilities could be remotely exploited to allow an increase of privilege, create a Denial of Service DoS, or execute arbitrary code. References: CVE-2013-23...
HP-UX PHSS_43889 : s700_800 11.X OV DP7.00 HP-UX IA/PA - Cell Server patch
s700800 11.X OV DP7.00 HP-UX IA/PA - Cell Server patch : Potential security vulnerabilities have been identified with HP Data Protector. These vulnerabilities could be remotely exploited to allow an increase of privilege, create a Denial of Service DoS, or execute arbitrary code. References:...
HP Data Protector Backup Client Service EXEC_BAR Packet Vulnerability
Added: 03/21/2014 CVE: CVE-2013-2347 BID: 64647 OSVDB: 101626 Background HP OpenView Storage Data Protector is a backup solution for enterprise and distributed environments. HP Data Protector's Backup Client Service OmniInet.exe listens on TCP port 5555 for communications between managed systems...
CVE-2013-2347
creationtimestamp| type| source ---|---|--- 2014-03-10 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32164 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/hpdataprotectorexecbar.rb 2025-02-06 03:13:41+00:00...
HP Data Protector Backup Client Service Remote Code Execution Exploit
Exploit for windows platform in category remote exploits require 'msf/core' class Metasploit3 'HP Data Protector Backup Client Service Remote Code Execution', 'Description' = %q This module abuses the Backup Client Service OmniInet.exe to achieve remote code execution. The vulnerability exists in...
HP Data Protector - Backup Client Service Remote Code Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Data Protector Backup Client Service Remote Code Execution', 'Description' = %q This module abuses the Backup Client Service...
HP Data Protector Backup Client Service Remote Code Execution
This module abuses the Backup Client Service OmniInet.exe to achieve remote code execution. The vulnerability exists in the EXECBAR operation, which allows to execute arbitrary processes. This module has been tested successfully on HP Data Protector 6.20 on Windows 2003 SP2 and Windows 2008 R2...
HP Data Protector EXEC_BAR Remote Command Execution
import argparse import socket """ Exploit Title: HP Data Protector EXECBAR Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-2347 Date: February 14, 2014 Vendor Homepage: www.hp.com Version: 6.10, 6.11, 6.20 Tested On: Windows Server 2003, Windows Server 2008 R2...
HP Data Protector - 'EXEC_BAR' Remote Command Execution
import argparse import socket """ Exploit Title: HP Data Protector EXECBAR Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-2347 Date: February 14, 2014 Vendor Homepage: www.hp.com Version: 6.10, 6.11, 6.20 Tested On: Windows Server 2003, Windows Server 2008 R2...
HP Data Protector - EXEC_BAR Remote Command Execution
HP Data Protector - EXECBAR Remote Command Execution import argparse import socket """ Exploit Title: HP Data Protector EXECBAR Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-2347 Date: February 14, 2014 Vendor Homepage: www.hp.com Version: 6.10, 6.11, 6.20 Test...
CVE-2013-2347
HP Data Protector Backup Client Service (OmniInet.exe) in HP Data Protector 6.2X is vulnerable to remote command execution via the EXEC_BAR opcode (11) sent to TCP port 5555, enabling an attacker to run arbitrary commands or cause a DoS. Public exploits and proofs of concept exist (e.g., Metasplo...