24 matches found
CVE-2010-3008
HP Data Protector Express/Express SSE on Windows is affected by a stack buffer overflow in the DtbClsLogin path (dpwindtb.dll) that copies user input into a stack buffer via Utf8Cpy, leading to local privilege escalation or denial of service. Affected versions are 3.x before build 56936 and 4.x b...
CVE-2010-3007
HP Data Protector Express/DP Express SSE is affected by a stack buffer overflow in the DtbClsLogin function (dpwindtb.dll) that can be triggered by supplying crafted input, with vulnerable versions including HP Data Protector 4.0 SP1 and related 3.x/4.x builds; exploitation can yield code executi...
HP Data Protector Express Crafted Traffic Remote Memory Disclosure
HP Data Protector Express is installed on the remote host. The installed version of the software is affected by an unspecified local privilege escalation vulnerability. A local attacker could exploit this vulnerability to trigger a denial of service condition or execute arbitrary code with system...
CVE-2009-0714
HP Data Protector Express and HP Data Protector Express SSE (3.x and SSE 4.x) are affected by CVE-2009-0714 through the dpwinsup.dll module in the dpwingad process. The vulnerability allows remote attackers to cause a memory read or memory leak and can crash the dpwingad.exe process by sending cr...