FortiNAC - argument injection in XML interface on port tcp/5555

An improper neutralization of special elements used in a command 'command injection' vulnerability CWE-77 in FortiNAC tcp/5555 service may allow an unauthenticated attacker to copy local files of the device to other local directories of the device via specially crafted input fields. To access the...

HP Data Protector 8.10 Remote Command Execution Exploit

Exploit for windows platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Data Protector 8.10 Remote Command Execution', 'Description' = %q This...

HP Data Protector 8.10 Remote Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Data Protector 8.10 Remote Command Execution', 'Description' = %q This module exploits a remote command execution on HP Data...

HP Data Protector EXEC_INTEGUTIL Remote Code Execution

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = GreatRanking include Msf::Exploit::Remote::Tcp include...

HP Data Protector EXEC_INTEGUTIL Remote Code Execution

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Data Protector EXECINTEGUTIL Remote Code Execution', 'Description' = %q This exploit abuses a vulnerability in the HP Data...

HP Data Protector EXEC_INTEGUTIL Remote Code Execution Exploit

This exploit abuses a vulnerability in the HP Data Protector. The vulnerability exists in the Backup client service, which listens by default on TCP/5555. The EXECINTEGUTIL request allows to execute arbitrary commands from a restricted directory. Since it includes a perl executable, it's possible...

HP Data Protector - 'EXEC_INTEGUTIL' Remote Code Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Data Protector EXECINTEGUTIL Remote Code Execution', 'Description' = %q This exploit abuses a vulnerability in the HP Data...

HP Data Protector EXEC_INTEGUTIL Remote Code Execution

This exploit abuses a vulnerability in the HP Data Protector. The vulnerability exists in the Backup client service, which listens by default on TCP/5555. The EXECINTEGUTIL request allows to execute arbitrary commands from a restricted directory. Since it includes a perl executable, it's possible...

HP OpenView Storage Data Protector multiple security vulnerabilities

Multiple vulnerabilities in TCP/5555 service...

HP Data Protector DoS

NULL pointer dereference on TCP/5555 request parsing...

HP OpenView Storage Data Protector备份客户端服务栈溢出漏洞

BUGTRAQ ID: 37396 CVECAN ID: CVE-2007-2280 HP OpenView Storage Data Protector是可扩展的数据管理解决方案，实现基于磁盘或磁带的高性能备份和恢复功能。 OpenView Storage Data Protector默认绑定在TCP 5555端口上的备份客户端服务守护程序（OmniInet.exe）在处理发送给MSGPROTOCOL命令的超长参数时存在栈溢出漏洞，远程攻击者可以通过提交恶意请求触发这个溢出，导致以服务的权限执行任意代码。 HP OpenView Storage Data Protector 6.0 H...