This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Hp First view 2011-02-08
Product Data Protector Last view 2018-02-15
Version * Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:hp:data_protector

Activity : Overall

Related : CVE

  Date Alert Description
5.5 2018-02-15 CVE-2017-5809

A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found.

7.5 2018-02-15 CVE-2017-5808

A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found.

9.8 2018-02-15 CVE-2017-5807

A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found.

9.8 2016-04-21 CVE-2016-2008

HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors.

9.8 2016-04-21 CVE-2016-2007

HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3354.

9.8 2016-04-21 CVE-2016-2006

HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3353.

9.8 2016-04-21 CVE-2016-2005

HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3352.

9.8 2016-04-21 CVE-2016-2004

HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers to execute arbitrary code via unspecified vectors related to lack of authentication. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2623.

7.8 2011-08-01 CVE-2011-2399

Unspecified vulnerability in the Media Management Daemon (mmd) in HP Data Protector 6.11 and earlier allows remote attackers to cause a denial of service via unknown vectors.

10 2011-02-08 CVE-2011-0924

The client in HP Data Protector does not verify the contents of files associated with the EXEC_CMD command, which allows remote attackers to execute arbitrary script code by providing this code with a trusted filename, as demonstrated by omni_chk_ds.sh.

10 2011-02-08 CVE-2011-0923

The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory."

10 2011-02-08 CVE-2011-0922

The client in HP Data Protector allows remote attackers to execute arbitrary programs via an EXEC_SETUP command that references a UNC share pathname.

10 2011-02-08 CVE-2011-0921

crs.exe in the Cell Manager Service in the client in HP Data Protector does not properly validate credentials associated with the hostname, domain, and username, which allows remote attackers to execute arbitrary code by sending unspecified data over TCP, related to the webreporting client, the applet domain, and the java username.

CWE : Common Weakness Enumeration

%idName
62% (5) CWE-20 Improper Input Validation
12% (1) CWE-306 Missing Authentication for Critical Function
12% (1) CWE-275 Permission Issues
12% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

SAINT Exploits

Description Link
HP Data Protector Client EXEC_CMD Command Execution More info here
HP Data Protector Client agent EXEC_SETUP code execution More info here
HP Data Protector missing authentication More info here

Open Source Vulnerability Database (OSVDB)

id Description
74249 HP Data Protector Media Management Daemon Unspecified Remote DoS
72527 HP Data Protector Client EXEC_CMD omni_chk_ds.sh Remote Code Execution
72526 HP Data Protector Client EXEC_CMD Perl Interpreter Crafted Input Remote Code ...
72525 HP Data Protector Client EXEC_SETUP Arbitrary Setup File Invocation Remote Co...
72524 HP Data Protector Cell Manager Service (crs.exe) Unspecified Authentication B...

ExploitDB Exploits

id Description
27400 HP Data Protector Arbitrary Remote Command Execution
27271 HP Data Protector CMD Install Service Vulnerability (msf)
19288 HP Data Protector Client EXEC_CMD Remote Code Execution
17648 HP Data Protector Remote Root Shell for Linux
17614 HP Data Protector Remote Shell for HP-UX
17345 HP Data Protector Client EXEC_SETUP Remote Code Execution PoC (ZDI-11-056)
17339 HP Data Protector Client EXEC_CMD Remote Code Execution PoC (ZDI-11-055)

OpenVAS Exploits

id Description
2011-08-10 Name : HP Data Protector Media Management Daemon Denial of Service Vulnerability
File : nvt/gb_hp_data_protector_mmd_dos_vuln.nasl
2011-06-13 Name : HP Data Protector Client 'EXEC_CMD' Remote Code Execution Vulnerability
File : nvt/gb_hp_data_protector_exec_cmd_code_exec_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2011-B-0092 HP OpenView Data Protector Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0029569

Snort® IPS/IDS

Date Description
2019-08-31 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 50829 - Type : SERVER-OTHER - Revision : 1
2019-08-31 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 50828 - Type : SERVER-OTHER - Revision : 1
2019-05-23 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 49893 - Type : SERVER-OTHER - Revision : 2
2019-05-23 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 49892 - Type : SERVER-OTHER - Revision : 1
2019-05-23 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 49891 - Type : SERVER-OTHER - Revision : 1
2019-05-23 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 49890 - Type : SERVER-OTHER - Revision : 2
2016-08-09 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 39453 - Type : SERVER-OTHER - Revision : 2
2016-03-15 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 37667 - Type : SERVER-OTHER - Revision : 2
2016-03-15 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 37666 - Type : SERVER-OTHER - Revision : 2
2016-03-14 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 36159 - Type : SERVER-OTHER - Revision : 4
2016-03-14 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 36158 - Type : SERVER-OTHER - Revision : 4
2014-03-15 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 29801 - Type : SERVER-OTHER - Revision : 8
2014-03-08 HP OpenView Storage Data Protector buffer overflow attempt
RuleID : 29630 - Type : SERVER-OTHER - Revision : 6
2014-03-06 HP OpenView Storage Data Protector buffer overflow attempt
RuleID : 29603 - Type : SERVER-OTHER - Revision : 6
2014-03-06 HP OpenView Storage Data Protector arbitrary command execution attempt
RuleID : 29518 - Type : SERVER-OTHER - Revision : 10
2014-01-10 HP Data Protector client EXEC_CMD command execution attempt
RuleID : 24223 - Type : SERVER-OTHER - Revision : 7
2014-01-10 HP Data Protector client EXEC_CMD command execution attempt
RuleID : 24222 - Type : SERVER-OTHER - Revision : 7
2014-01-10 HP Data Protector client EXEC_CMD command execution attempt
RuleID : 24221 - Type : SERVER-OTHER - Revision : 6
2014-01-10 HP Data Protector Backup Client Service code execution attempt
RuleID : 18754 - Type : SERVER-OTHER - Revision : 9

Nessus® Vulnerability Scanner

id Description
2017-08-11 Name: The remote host is affected by multiple vulnerabilities.
File: hp_data_protector_hpesbgn03732.nasl - Type: ACT_GATHER_INFO
2016-05-06 Name: An application running on the remote host utilizes an embedded SSL private key.
File: hp_data_protector_hardcoded_private_key.nasl - Type: ACT_GATHER_INFO
2016-04-29 Name: The remote host is affected by multiple vulnerabilities.
File: hp_data_protector_hpsbgn03580.nasl - Type: ACT_GATHER_INFO
2011-05-10 Name: The backup service running on the remote host is affected by multiple vulnera...
File: hp_data_protector_multiple_code_exec.nasl - Type: ACT_GATHER_INFO