Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:9B54DF5BF499A95FFB796D83F4231C05
HistoryJul 23, 2012 - 12:00 a.m.

HP Data Protector Express Opcode 0x320 Overflow

2012-07-2300:00:00
SAINT Corporation
my.saintcorporation.com
21

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.115 Low

EPSS

Percentile

95.3%

JSON

Added: 07/23/2012
CVE: CVE-2012-0121
BID: 52431
OSVDB: 80102

Background

HP Data Protector Express is a backup and recovery solution for single machines and small networks.

Problem

A stack overflow vulnerability exists in dpwindtb.dll. Validation of parameters to Opcode 0x320 requests are not sufficiently validated. A remote unauthenticated attacker may exploit this vulnerability to gain execution access on the target system.

Resolution

Apply the patch referenced in HP Security Bulletin HPSBMU02746 SSRT100781.

References

<http://www.zerodayinitiative.com/advisories/ZDI-12-097/&gt;

Limitations

This exploit has been tested against HP Data Protector Express 6.0.00.11974 on Windows XP SP3 English (DEP OptIn).

Platforms

Windows

Related

saint 3
checkpoint_advisories 1
prion 1
cvelist 1
nvd 1
zdi 1
cve 1
securityvulns 3
attackerkb 1
nessus 1
saint
saint
HP Data Protector Express Opcode 0x320 Overflow
2012-07-23 00:00:00
HP Data Protector Express Opcode 0x320 Overflow
2012-07-23 00:00:00
HP Data Protector Express Opcode 0x320 Overflow
2012-07-23 00:00:00
checkpoint_advisories
checkpoint_advisories
HP Data Protector Express Multiple Opcodes Parsing Stack Buffer Overflow (CVE-2012-0121)
2012-10-14 00:00:00
prion
prion
Code injection
2012-03-14 03:28:00
cvelist
cvelist
CVE-2012-0121
2022-10-03 16:15:40
nvd
nvd
CVE-2012-0121
2012-03-14 03:28:49
zdi
zdi
HP Data Protector Express Opcode 0x320 Parsing Remote Code Execution Vulnerability
2012-06-21 00:00:00
cve
cve
CVE-2012-0121
2022-10-03 16:15:40
securityvulns
securityvulns
ZDI-12-097 : HP Data Protector Express Opcode 0x320 Parsing Remote Code Execution Vulnerability
2012-06-24 00:00:00
HP Data Protector Express multiple security vulnerabilities
2012-06-24 00:00:00
[security bulletin] HPSBMU02746 SSRT100781 rev.1 - HP Data Protector Express, Remote Denial of Service &#40;DoS&#41;, Execution of Arbitrary Code
2012-03-19 00:00:00
attackerkb
attackerkb
HP Data Protector Express 6.0.00.11974 dpwintdb.exe Buffer Overflow
2012-03-14 00:00:00
nessus
nessus
HP Data Protector Express 5.x < 5.0.0 Build 59287 / 6.x < 6.0.0 Build 11974 Multiple Vulnerabilities
2012-03-20 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.115 Low

EPSS

Percentile

95.3%

JSON
Related for SAINT:9B54DF5BF499A95FFB796D83F4231C05
saint3checkpoint_advisories1prion1cvelist1nvd1zdi1cve1securityvulns3attackerkb1nessus1