Lucene search
PRIOn knowledge basePRION:CVE-2016-2004HistoryApr 21, 2016 - 11:00 a.m.
Authentication flaw
2016-04-2111:00:00
PRIOn knowledge base
www.prio-n.com
HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers to execute arbitrary code via unspecified vectors related to lack of authentication. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2623.
| CPE | Name | Operator | Version |
|---|---|---|---|
| data_protector | ge | 7.0 | |
| data_protector | lt | 7.03 | |
| data_protector | ge | 8.0 | |
| data_protector | lt | 8.15 | |
| data_protector | ge | 9.0 | |
| data_protector | lt | 9.06 |
References
packetstormsecurity.com/files/137199/HP-Data-Protector-A.09.00-Command-Execution.html
packetstormsecurity.com/files/137341/HP-Data-Protector-Encrypted-Communication-Remote-Command-Execution.html
www.kb.cert.org/vuls/id/267328
www.securitytracker.com/id/1035631
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05085988
www.exploit-db.com/exploits/39858/
www.exploit-db.com/exploits/39874/
Related
cve
cve
CVE-2016-2004
2016-04-21 11:00:04
CVE-2014-2623
2014-07-18 01:00:00
exploitpack
exploitpack
HP Data Protector A.09.00 - Arbitrary Command Execution
2016-05-26 00:00:00
HP Data Protector 8.x - Remote Command Execution
2015-01-30 00:00:00
cvelist
cvelist
CVE-2016-2004
2016-04-21 10:00:00
CVE-2014-2623
2014-07-18 01:00:00
nvd
nvd
CVE-2016-2004
2016-04-21 11:00:04
CVE-2014-2623
2014-07-18 00:55:04
exploitdb
exploitdb
HP Data Protector A.09.00 - Arbitrary Command Execution
2016-05-26 00:00:00
HP Data Protector 8.x - Remote Command Execution
2015-01-30 00:00:00
saint
saint
HP Data Protector Windows Unauthenticated Remote Code Execution
2015-02-18 00:00:00
HP Data Protector Unauthenticated Remote Code Execution
2015-02-10 00:00:00
HP Data Protector Windows Unauthenticated Remote Code Execution
2015-02-18 00:00:00
zdt
zdt
HP Data Protector 8.x - Remote Command Execution Exploit
2010-01-16 00:00:00
HP Data Protector 8.10 Remote Command Execution Exploit
2015-03-07 00:00:00
HP Data Protector A.09.00 - Arbitrary Command Execution
2016-05-26 00:00:00
threatpost
threatpost
Operation Prowli Profits On Weak IoT Devices, Servers
2018-06-07 17:06:55
securityvulns
securityvulns
HP Storage Data Protector code execution
2014-07-21 00:00:00
prion
prion
Code injection
2014-07-18 00:55:00
seebug
seebug
HP Data Protector 8.x - Remote Command Execution
2015-09-17 00:00:00
packetstorm
packetstorm
HP Data Protector 8.10 Remote Command Execution
2015-03-05 00:00:00
HP Data Protector Encrypted Communication Remote Command Execution
2016-06-07 00:00:00
HP Data Protector A.09.00 Command Execution
2016-05-26 00:00:00
checkpoint_advisories
checkpoint_advisories
HP Data Protector Opcode 28 and 11 Command Execution (CVE-2013-2347; CVE-2014-2623)
2014-08-06 00:00:00
HP Data Protector Remote Command Execution (CVE-2016-2004)
2016-10-26 00:00:00
cert
cert
openvas
openvas
HP Data Protector Encrypted Communications Arbitrary Command Execution Vulnerability
2016-07-08 00:00:00
HP (OpenView Storage) Data Protector Multiple Vulnerabilities
2014-02-18 00:00:00
HP Data Protector Multiple Vulnerabilities (Apr 2016)
2016-04-26 00:00:00
nessus
nessus