21 matches found
CVE-2007-2280
CVE-2007-2280 describes a stack-based buffer overflow in HP OpenView Data Protector’s OmniInet.exe (Application Recovery Manager component) triggered by long MSG_PROTOCOL requests, enabling remote code execution. Public details in connected documents show Metasploit modules and Exploit-DB entries...
CVE-2011-1731
HP OpenView Data Protector (Backup Client Service) is affected by a stack-based buffer overflow in OmniInet.exe (EXEC_INTEGUTIL message) that allows remote, unauthenticated code execution. Vulnerable products: HP Data Protector 6.00, 6.10, 6.11 (Windows). The flaw resides in insufficient bounds c...
CVE-2011-1865
CVE-2011-1865 describes multiple stack-based buffer overflows in the inet service of HP OpenView Storage Data Protector 6.00–6.20, enabling remote code execution via crafted parameter requests. Publicly available exploit information (e.g., HP OmniInet exploits with opcode 20/27, and Metasploit mo...
CVE-2007-2281
HP OpenView Storage Data Protector Cell Manager (rds.exe) vulnerable to a heap overflow due to an integer overflow in _ncp32._NtrpTCPReceiveMsg() when processing data on TCP port 1530. The vulnerability exists in HP OpenView Data Protector 5.50 and 6.0, where a large size parameter leads to under...
CVE-2011-1515
HP Data Protector (OpenView Storage Data Protector) inet service vulnerability affecting versions 6.00–6.20 can be triggered by a crafted request to the data protector inet port (port 5555 per CoreLabs advisory) leading to denial of service (daemon exit) or remote code execution in some reports. ...
CVE-2011-1866
HP OpenView Storage Data Protector 6.00–6.20 contains a remote code execution vulnerability in the inet service due to a buffer/boundary handling issue with EXEC_CMD messages. The root cause is insufficient boundary checking when processing EXEC_CMD, enabling an attacker to craft a request that e...
CVE-2011-1733
HP OpenView Data Protector 6.00/6.10/6.11 Backup Client Service (OmniInet.exe) suffers a stack-based buffer overflow via malformed HPFGConfig messages, enabling remote code execution on Windows as SYSTEM. The flaw exists in the Backup Client Service (listening on port 5555) and results from insuf...
CVE-2011-1735
CVE-2011-1735 describes a stack-based buffer overflow in OmniInet.exe (Backup Client Service) of HP OpenView Storage Data Protector, affecting HP Data Protector 6.00, 6.10, and 6.11. The vulnerability arises from insufficient bounds checking on user-supplied data in a fixed-length buffer, exploit...
CVE-2011-1864
CVE-2011-1864 affects HP OpenView Storage Data Protector (DP) 6.0, 6.10 and 6.11. The vulnerability enables remote code execution with a CVSS v2 base score of 9.3. HP Security Bulletin HPSBMA02631/SSRT100324 documents remote code execution; patches are provided per DP version/toolchain (e.g., DP6...
CVE-2011-1514
The CVE-2011-1514 weakness affects HP OpenView Storage Data Protector (HP Data Protector) 6.00–6.20, specifically the inet service. A crafted request can trigger a NULL pointer dereference causing a denial of service (daemon crash). Public sources also describe related issues (CVE-2011-1515, CVE-...
CVE-2011-1730
HP OpenView Storage Data Protector (HP Data Protector) 6.00/6.10/6.11 Backup Client Service (OmniInet.exe) is affected by a stack-based buffer overflow in the EXEC_SCRIPT handling, allowing remote, unauthenticated code execution under SYSTEM by sending malformed EXEC_SCRIPT packets to the Backup ...
CVE-2011-1734
HP OpenView Data Protector affected version 6.00/6.10/6.11 on Windows where the Backup Client Service (OmniInet.exe) processes malformed omniiaputil messages. The root cause is a stack-based buffer overflow in OmniInet.exe that allows unauthenticated, remote code execution, potentially with SYSTE...
CVE-2011-1729
HP OpenView Storage Data Protector Backup Client Service (OmniInet.exe) on Windows is vulnerable to a stack-based buffer overflow when processing GET_FILE messages, enabling remote code execution by unauthenticated attackers. Affected versions include Data Protector 6.00, 6.10, and 6.11. The issu...
CVE-2011-1736
CVE-2011-1736 affects HP OpenView Storage Data Protector (Backup Client Service) on Windows, specifically the OmniInet.exe component. The flaw is a directory-traversal vulnerability in the Backup Client Service (GET_FILE messages) that allows remote, unauthenticated attackers to read arbitrary fi...
CVE-2011-0275
HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 are affected by a remote denial-of-service vulnerability. The HP Security Bulletin HPSBMA02626 SSRT100301 rev.1 provides patches for Windows variants: DPWIN_00475 (DP 6.11), DPWIN_00489 (DP 6.10), and DPWIN_00488 (DP 6.00). CVSS 2.0 Base Scor...
CVE-2011-1728
HP Data Protector (OpenView Storage Data Protector) Backup Client Service OmniInet.exe on Windows (Data Protector versions 6.00, 6.10, 6.11) is affected by a stack-based buffer overflow triggered by malformed EXEC_BAR messages. This unauthenticated remote code execution flaw can allow an attacker...
CVE-2011-1732
CVE-2011-1732 is a confirmed vulnerability in HP OpenView Storage Data Protector’s Backup Client Service (OmniInet.exe). The issue is a stack-based/buffer overflow in the handling of stutil messages, allowing unauthenticated, remote code execution on affected Windows installations (Data Protector...
CVE-2009-4183
CVE-2009-4183 affects HP OpenView Storage Data Protector versions 6.00 and 6.10, enabling local unauthorized access via unspecified vectors. Red Hat and HP-UX/Nessus references corroborate vulnerability. Patches exist for HP-UX OpenView DP hardware/OS variants (e.g., PHSS_39016, PHSS_39510/39511/...
CVE-2006-4201
HP OpenView Storage Data Protector 5.1 and 5.5 (Cell Manager/backup agent) contain a remote code execution vulnerability prior to 2006-08-10, exploitable by an unauthenticated remote attacker through vectors related to authentication and input validation. Multiple Nessus and CERT records corrobor...
CVE-2006-2579
CVE-2006-2579 corresponds to an unspecified remote-code-execution vulnerability in HP OpenView Storage Data Protector 5.1 and 5.5. Public docs indicate the issue could allow a remote unauthenticated attacker to execute arbitrary commands via unknown vectors on affected platforms (notably HP-UX/AI...
CVE-2007-0866
Affected software: HP OpenView Storage Data Protector running on HP-UX B.11.00, B.11.11, or B.11.23. Issue: local arbitrary-code execution via unknown vectors (unassigned root cause in the provided docs). Remediation: patches PHSS_35164/PHSS_35165 for HP-UX OpenView Data Protector are referenced ...