Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-0923
HistoryFeb 09, 2011 - 1:00 a.m.

CVE-2011-0923

2011-02-0901:00:09
CWE-20
[email protected]
web.nvd.nist.gov
63
hp data protector
cve-2011-0923
remote code execution
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.972 High

EPSS

Percentile

99.8%

JSON

The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the “local bin directory.”

Affected configurations

NVD
Node
hpdata_protector
CPENameOperatorVersion
hp:data_protectorhp data protectoreq*

Related

zdt 1
saint 4
packetstorm 5
seebug 4
exploitpack 4
securityvulns 3
prion 1
checkpoint_advisories 2
nvd 1
cvelist 1
zdi 1
openvas 2
exploitdb 4
zdt
zdt
HP Data Protector Arbitrary Remote Command Execution
2013-08-07 00:00:00
saint
saint
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
packetstorm
packetstorm
HP Data Protector Arbitrary Remote Command Execution
2013-08-07 00:00:00
HP Data Protector Client Code Execution
2011-05-28 00:00:00
HP Data Protector Remote Shell
2011-08-05 00:00:00
seebug
seebug
HP Data Protector Client EXEC_CMD Remote Code Execution PoC (ZDI-11-055)
2014-07-01 00:00:00
HP Data Protector Remote Shell for HP-UX
2014-07-01 00:00:00
HP Data Protector Arbitrary Remote Command Execution
2014-07-01 00:00:00
exploitpack
exploitpack
HP Data Protector - Remote Command Execution
2013-08-07 00:00:00
HP Data Protector (Linux) - Remote Command Execution
2011-08-10 00:00:00
HP Data Protector Client 6.11 - EXEC_CMD Remote Code Execution
2011-05-28 00:00:00
securityvulns
securityvulns
HP Data Protector Arbitrary Remote Command Execution
2013-08-12 00:00:00
HP Data Protector code execution
2013-08-12 00:00:00
[security bulletin] HPSBMA02654 SSRT100441 rev.1 - HP OpenView Storage Data Protector, Remote Execution of Arbitrary Code
2011-04-27 00:00:00
prion
prion
Command injection
2011-02-09 01:00:00
checkpoint_advisories
checkpoint_advisories
HP Data Protector Client EXEC_CMD Command Execution (CVE-2011-0923)
2011-11-01 00:00:00
Hp Data Protector Remote Client EXEC_CMD Code Execution - Ver2 (CVE-2011-0923)
2018-07-05 00:00:00
nvd
nvd
CVE-2011-0923
2011-02-09 01:00:09
cvelist
cvelist
CVE-2011-0923
2011-02-09 00:00:00
zdi
zdi
(0Day) Hewlett-Packard Data Protector Client EXEC_CMD Perl Remote Code Execution Vulnerability
2011-02-07 00:00:00
openvas
openvas
HP (OpenView Storage) Data Protector Client 'EXEC_CMD' RCE Vulnerability
2011-06-13 00:00:00
HP (OpenView Storage) Data Protector Multiple Vulnerabilities
2014-02-18 00:00:00
exploitdb
exploitdb
HP Data Protector - Remote Command Execution
2013-08-07 00:00:00
HP Data Protector Client 6.11 - 'EXEC_CMD' Remote Code Execution
2011-05-28 00:00:00
HP Data Protector (HP-UX) - Remote Shell
2011-08-05 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.972 High

EPSS

Percentile

99.8%

JSON
Related for CVE-2011-0923
zdt1saint4packetstorm5seebug4exploitpack4securityvulns3prion1checkpoint_advisories2nvd1cvelist1zdi1openvas2exploitdb4