Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiAnonymousZDI-11-055
HistoryFeb 07, 2011 - 12:00 a.m.

(0Day) Hewlett-Packard Data Protector Client EXEC_CMD Perl Remote Code Execution Vulnerability

2011-02-0700:00:00
Anonymous
www.zerodayinitiative.com
18

0.973 High

EPSS

Percentile

99.9%

JSON

This vulnerability allows an attacker to execute remote code on vulnerable installations of the Hewlett-Packard Data Protector client. User interaction is not required to exploit this vulnerability. The specific flaw exists within the filtering of arguments to the EXEC_CMD command. The Data Protector client allows remote connections to execute files within it’s local bin directory. By supplying maliciously crafted input to the EXEC_CMD a remote attacker can interact with a Perl interpreter and execute arbitrary code under the context of the current user.

Related

saint 4
openvas 2
exploitpack 4
packetstorm 5
checkpoint_advisories 2
seebug 4
securityvulns 3
prion 1
cve 1
zdt 1
cvelist 1
nvd 1
exploitdb 4
saint
saint
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
HP Data Protector Client EXEC_CMD Command Execution
2011-06-07 00:00:00
openvas
openvas
HP (OpenView Storage) Data Protector Client 'EXEC_CMD' RCE Vulnerability
2011-06-13 00:00:00
HP (OpenView Storage) Data Protector Multiple Vulnerabilities
2014-02-18 00:00:00
exploitpack
exploitpack
HP Data Protector (HP-UX) - Remote Shell
2011-08-05 00:00:00
HP Data Protector (Linux) - Remote Command Execution
2011-08-10 00:00:00
HP Data Protector - Remote Command Execution
2013-08-07 00:00:00
packetstorm
packetstorm
HP Data Protector 6.1 EXEC_CMD Remote Code Execution
2012-02-24 00:00:00
HP Data Protector Arbitrary Remote Command Execution
2013-08-07 00:00:00
HP Data Protector Arbitrary Remote Command Execution
2013-08-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Hp Data Protector Remote Client EXEC_CMD Code Execution - Ver2 (CVE-2011-0923)
2018-07-05 00:00:00
HP Data Protector Client EXEC_CMD Command Execution (CVE-2011-0923)
2011-11-01 00:00:00
seebug
seebug
HP Data Protector Arbitrary Remote Command Execution
2014-07-01 00:00:00
HP Data Protector Client EXEC_CMD Remote Code Execution PoC (ZDI-11-055)
2014-07-01 00:00:00
HP Data Protector Remote Shell for HP-UX
2014-07-01 00:00:00
securityvulns
securityvulns
HP Data Protector Arbitrary Remote Command Execution
2013-08-12 00:00:00
HP Data Protector code execution
2013-08-12 00:00:00
[security bulletin] HPSBMA02654 SSRT100441 rev.1 - HP OpenView Storage Data Protector, Remote Execution of Arbitrary Code
2011-04-27 00:00:00
prion
prion
Command injection
2011-02-09 01:00:00
cve
cve
CVE-2011-0923
2011-02-09 01:00:09
zdt
zdt
HP Data Protector Arbitrary Remote Command Execution
2013-08-07 00:00:00
cvelist
cvelist
CVE-2011-0923
2011-02-09 00:00:00
nvd
nvd
CVE-2011-0923
2011-02-09 01:00:09
exploitdb
exploitdb
HP Data Protector (Linux) - Remote Command Execution
2011-08-10 00:00:00
HP Data Protector - Remote Command Execution
2013-08-07 00:00:00
HP Data Protector Client 6.11 - 'EXEC_CMD' Remote Code Execution
2011-05-28 00:00:00

0.973 High

EPSS

Percentile

99.9%

JSON
Related for ZDI-11-055
saint4openvas2exploitpack4packetstorm5checkpoint_advisories2seebug4securityvulns3prion1cve1zdt1cvelist1nvd1exploitdb4