Lucene search
PRIOn knowledge basePRION:CVE-2011-0923HistoryFeb 09, 2011 - 1:00 a.m.
Command injection
2011-02-0901:00:00
PRIOn knowledge base
www.prio-n.com
2
The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the “local bin directory.”
References
dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-hp
securityreason.com/securityalert/8261
securityreason.com/securityalert/8323
securityreason.com/securityalert/8329
www.securityfocus.com/bid/46234
www.vupen.com/english/advisories/2011/0308
zerodayinitiative.com/advisories/ZDI-11-055/
marc.info/?l=bugtraq&m=130391284726795&w=2
Related
packetstorm
packetstorm
HP Data Protector Arbitrary Remote Command Execution
2013-08-07 00:00:00
HP Data Protector Arbitrary Remote Command Execution
2013-08-07 00:00:00
HP Data Protector Client Code Execution
2011-05-28 00:00:00
saint
saint
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
seebug
seebug
HP Data Protector Arbitrary Remote Command Execution
2014-07-01 00:00:00
HP Data Protector - Remote Root Shell (Linux Version)
2014-07-01 00:00:00
HP Data Protector Client EXEC_CMD Remote Code Execution PoC (ZDI-11-055)
2014-07-01 00:00:00
securityvulns
securityvulns
HP Data Protector Arbitrary Remote Command Execution
2013-08-12 00:00:00
HP Data Protector code execution
2013-08-12 00:00:00
exploitpack
exploitpack
HP Data Protector Client 6.11 - EXEC_CMD Remote Code Execution
2011-05-28 00:00:00
HP Data Protector (Linux) - Remote Command Execution
2011-08-10 00:00:00
HP Data Protector - Remote Command Execution
2013-08-07 00:00:00
checkpoint_advisories
checkpoint_advisories
HP Data Protector Client EXEC_CMD Command Execution (CVE-2011-0923)
2011-11-01 00:00:00
cvelist
cvelist
CVE-2011-0923
2011-02-09 00:00:00
nvd
nvd
CVE-2011-0923
2011-02-09 01:00:09
cve
cve
CVE-2011-0923
2011-02-09 01:00:09
zdt
zdt
HP Data Protector Arbitrary Remote Command Execution
2013-08-07 00:00:00
zdi
zdi
openvas
openvas
HP (OpenView Storage) Data Protector Client 'EXEC_CMD' RCE Vulnerability
2011-06-13 00:00:00
HP (OpenView Storage) Data Protector Multiple Vulnerabilities
2014-02-18 00:00:00
exploitdb
exploitdb
HP Data Protector Client 6.11 - 'EXEC_CMD' Remote Code Execution
2011-05-28 00:00:00
HP Data Protector (HP-UX) - Remote Shell
2011-08-05 00:00:00
HP Data Protector (Linux) - Remote Command Execution
2011-08-10 00:00:00