Lucene search
K
HpData Protector Express

7 matches found

CVE
CVE
added 2012/03/14 1:0 a.m.153 views

CVE-2012-0121

HP Data Protector Express (DPX) versions 5.0.00 prior to build 59287 and 6.0.00 prior to build 11974 contain a stack-based buffer overflow in the dpwindtb.dll handling Opcode 0x320, allowing remote, unauthenticated attackers to execute arbitrary code or cause a DoS. ZDI-12-097/disclosures detail ...

10CVSS7.7AI score0.10436EPSS
CVE
CVE
added 2012/03/14 1:0 a.m.116 views

CVE-2012-0124

CVE-2012-0124 refers to a stack/heap issue in HP Data Protector Express (DPX) 5.x and 6.x prior to build 59287/11974, exploitable via the DPX server’s dpwindtb.dll when creating a new folder. The connected data confirms a concrete flaw in the AddObject path used by the New Folder operation (SVC 0...

10CVSS7.8AI score0.62655EPSS
CVE
CVE
added 2010/09/09 9:0 p.m.60 views

CVE-2010-3007

HP Data Protector Express/DP Express SSE is affected by a stack buffer overflow in the DtbClsLogin function (dpwindtb.dll) that can be triggered by supplying crafted input, with vulnerable versions including HP Data Protector 4.0 SP1 and related 3.x/4.x builds; exploitation can yield code executi...

7.2CVSS6.3AI score0.05057EPSS
CVE
CVE
added 2010/09/13 8:0 p.m.56 views

CVE-2010-3008

HP Data Protector Express/Express SSE on Windows is affected by a stack buffer overflow in the DtbClsLogin path (dpwindtb.dll) that copies user input into a stack buffer via Utf8Cpy, leading to local privilege escalation or denial of service. Affected versions are 3.x before build 56936 and 4.x b...

7.2CVSS6.4AI score0.00606EPSS
CVE
CVE
added 2012/03/14 1:0 a.m.52 views

CVE-2012-0122

CVE-2012-0122 affects HP Data Protector Express (DPX) 5.0.00 before build 59287 and 6.0.00 before build 11974. The ZDI advisory details a flaw in the dpwinsdr.exe process that listens on TCP port 3817 and has insufficient bounds checking on user-supplied data, allowing remote, unauthenticated att...

10CVSS7.9AI score0.10436EPSS
CVE
CVE
added 2012/03/14 1:0 a.m.47 views

CVE-2012-0123

HP Data Protector Express (DPX) versions 5.x before 5.0.0 build 59287 and 6.x before 6.0.0 build 11974 are affected by multiple remote vulnerabilities (CVE-2012-0121/0122/0123/0124) leading to arbitrary code execution or DoS. The root cause is a vulnerability in the Windows service components (dp...

10CVSS8AI score0.10349EPSS
CVE
CVE
added 2009/05/14 5:0 p.m.46 views

CVE-2009-0714

HP Data Protector Express and HP Data Protector Express SSE (3.x and SSE 4.x) are affected by CVE-2009-0714 through the dpwinsup.dll module in the dpwingad process. The vulnerability allows remote attackers to cause a memory read or memory leak and can crash the dpwingad.exe process by sending cr...

7.2CVSS6.5AI score0.51612EPSS