4 matches found
Code injection
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1296...
Code injection
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1229...
Code injection
Unspecified vulnerability in HP Data Protector Notebook Extension 6.20 and Data Protector for Personal Computers 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1228...
CVE-2011-3160
HP Data Protector Notebook Extension has a remote code execution vulnerability (ZDI-1228) affecting dpnepolicyservice via LogCopyOperation. The flaw exists in the DPNECentral Web Service on TCP port 80; the copyStatus field from a user request is used to construct a query without proper validatio...