Lucene search
HistoryJan 04, 2014 - 4:51 a.m.
CVE-2013-2347
hp storage
data protector
omniinet.exe
execute arbitrary commands
denial of service
tcp
port 5555
cve-2013-2347
zdi-can-1885
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.43 Medium
EPSS
Percentile
97.4%
The Backup Client Service (OmniInet.exe) in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary commands or cause a denial of service via a crafted EXEC_BAR packet to TCP port 5555, aka ZDI-CAN-1885.
Affected configurations
Node
hpstorage_data_protectorMatch6.20-hp-ux
ORhpstorage_data_protectorMatch6.20-redhat_enterprise_linux
ORhpstorage_data_protectorMatch6.20-solaris
ORhpstorage_data_protectorMatch6.20-windows_server_2003
ORhpstorage_data_protectorMatch6.20-windows_server_2008
ORhpstorage_data_protectorMatch6.21-hp-ux
ORhpstorage_data_protectorMatch6.21-redhat_enterprise_linux
ORhpstorage_data_protectorMatch6.21-solaris
ORhpstorage_data_protectorMatch6.21-windows_server_2003
ORhpstorage_data_protectorMatch6.21-windows_server_2008
Related
saint
saint
HP Data Protector Backup Client Service EXEC_BAR Packet Vulnerability
2014-03-21 00:00:00
HP Data Protector Backup Client Service EXEC_BAR Packet Vulnerability
2014-03-21 00:00:00
HP Data Protector Backup Client Service EXEC_BAR Packet Vulnerability
2014-03-21 00:00:00
checkpoint_advisories
checkpoint_advisories
HP Data Protector EXEC_BAR Command Execution (CVE-2013-2347)
2014-03-12 00:00:00
seebug
seebug
HP Data Protector EXEC_BAR Remote Command Execution
2014-07-01 00:00:00
HP Storage Data Protectorๅคไธชๅฎๅ
จๆผๆด
2014-01-06 00:00:00
zdt
zdt
HP Data Protector Backup Client Service Remote Code Execution Exploit
2014-03-10 00:00:00
HP Data Protector Backup Client Service Remote Code Execution
2014-03-06 00:00:00
cvelist
cvelist
CVE-2013-2347
2014-01-04 02:00:00
packetstorm
packetstorm
HP Data Protector EXEC_BAR Remote Command Execution
2014-02-17 00:00:00
HP Data Protector Backup Client Service Remote Code Execution
2014-03-06 00:00:00
zdi
zdi
exploitpack
exploitpack
HP Data Protector - EXEC_BAR Remote Command Execution
2014-02-16 00:00:00
prion
prion
Design/Logic Flaw
2014-01-04 04:51:00
nvd
nvd
CVE-2013-2347
2014-01-04 04:51:17
exploitdb
exploitdb
HP Data Protector - 'EXEC_BAR' Remote Command Execution
2014-02-16 00:00:00
securityvulns
securityvulns
nessus
nessus
HP-UX PHSS_43889 : s700_800 11.X OV DP7.00 HP-UX IA/PA - Cell Server patch
2014-04-27 00:00:00
HP Data Protector Multiple Vulnerabilities (HPSBMU02895 SSRT101253)
2014-01-06 00:00:00
HP-UX PHSS_43890 : s700_800 11.X OV DP7.00 HP-UX IA/PA - Core patch
2014-04-27 00:00:00
openvas
openvas
HP (OpenView Storage) Data Protector Multiple Vulnerabilities
2014-02-18 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.43 Medium
EPSS
Percentile
97.4%
Related for CVE-2013-2347