The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of HPE OpenView Storage Data Protector

vulnerability CVE-2012-0121 CVE-2012-0122 CVE-2012-0123

HP Data Protector Express: four vulnerabilities

Synthesis of the vulnerability

Four vulnerabilities of HP Data Protector Express can be used by an attacker, in order to create a denial of service or to execute code.
Impacted products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: user access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 4.
Creation date: 13/03/2012.
Revisions dates: 22/06/2012, 02/07/2012.
Identifiers: BID-52431, c03229235, CERTA-2012-AVI-146, CVE-2012-0121, CVE-2012-0122, CVE-2012-0123, CVE-2012-0124, HPSBMU02746, SSRT100781, TPTI-12-06, VIGILANCE-VUL-11430, ZDI-12-096, ZDI-12-097, ZDI-CAN-1392, ZDI-CAN-1393, ZDI-CAN-1498.

Description of the vulnerability

Four vulnerabilities were announced in HP Data Protector Express.

An attacker can send a message with the opcode 0x320, which generates a buffer overflow in dpwinsdr.exe, in order to create a denial of service or to execute code. [severity:3/4; CVE-2012-0121, ZDI-12-097, ZDI-CAN-1392]

An attacker can send a message with the opcode 0x330, which generates a buffer overflow in dpwinsdr.exe, in order to create a denial of service or to execute code. [severity:3/4; CVE-2012-0122, ZDI-12-096, ZDI-CAN-1393]

An attacker can use a malicious DtbClsAddObject query, in order to generate a buffer overflow in dpwintdb.exe, which can be used to create a denial of service or to execute code. [severity:3/4; CVE-2012-0123, TPTI-12-06, ZDI-CAN-1498]

An attacker can use a long directory name, in order to generate a buffer overflow in dpwindtb.dll/dpwintdb.exe, which can be used to create a denial of service or to execute code. [severity:3/4; CVE-2012-0124]
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2011-1514 CVE-2011-1515 CVE-2011-1865

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

A remote attacker can use two vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Impacted products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: privileged access/rights, user access/rights.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 2.
Creation date: 29/06/2011.
Revision date: 30/06/2011.
Identifiers: BID-48486, BID-48488, c02872182, CORE-2011-0514, CORE-2011-0606, CVE-2011-1514, CVE-2011-1515, CVE-2011-1865, CVE-2011-1866, HPSBMU02686, SSRT100541, VIGILANCE-VUL-10791.

Description of the vulnerability

The HP OpenView Storage Data Protector product manages data of an enterprise. Its "data protector inet" service listens on the port 5555/tcp and it is impacted by two vulnerabilities.

A remote attacker can send malformed data to this service, in order to create several overflows. [severity:3/4; BID-48486, CORE-2011-0514, CVE-2011-1514, CVE-2011-1515, CVE-2011-1865]

A remote attacker can send large data, in order to create a buffer overflow. [severity:3/4; BID-48488, CORE-2011-0606, CVE-2011-1866]

A remote attacker can therefore use two vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Full Vigil@nce bulletin... (Free trial)

vulnerability bulletin CVE-2011-1864

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

A remote attacker can use a vulnerability of HP OpenView Storage Data Protector, in order to execute code.
Impacted products: OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: privileged access/rights, user access/rights.
Provenance: intranet client.
Creation date: 09/06/2011.
Identifiers: BID-48178, c02712867, CERTA-2011-AVI-337, CVE-2011-1864, HPSBMA02631, SSRT100324, VIGILANCE-VUL-10723.

Description of the vulnerability

The HP OpenView Storage Data Protector product manages data of an enterprise.

A remote attacker can use a vulnerability of HP OpenView Storage Data Protector, in order to execute code.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin CVE-2011-1728 CVE-2011-1729 CVE-2011-1730

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

A remote attacker can use nine vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Impacted products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: administrator access/rights, privileged access/rights, data reading.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 9.
Creation date: 29/04/2011.
Revision date: 02/05/2011.
Identifiers: BID-47638, c02810240, CVE-2011-1728, CVE-2011-1729, CVE-2011-1730, CVE-2011-1731, CVE-2011-1732, CVE-2011-1733, CVE-2011-1734, CVE-2011-1735, CVE-2011-1736, HPSBMA02668, SSRT100474, VIGILANCE-VUL-10608, ZDI-11-144, ZDI-11-145, ZDI-11-146, ZDI-11-147, ZDI-11-148, ZDI-11-149, ZDI-11-150, ZDI-11-151, ZDI-11-152.

Description of the vulnerability

The HP OpenView Storage Data Protector product manages data of an enterprise. The OmniInet.exe service (Backup Client Service) listens on the port 5555/tcp. It is impacted by nine vulnerabilities.

An attacker can send a long EXEC_BAR message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1728, ZDI-11-144]

An attacker can send a long GET_FILE message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1729, ZDI-11-145]

An attacker can send a long EXEC_SCRIPT message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1730, ZDI-11-146]

An attacker can send a long EXEC_INTEGUTIL message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1731, ZDI-11-147]

An attacker can send a long message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1732, ZDI-11-148]

An attacker can send a long HPFGConfig message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1733, ZDI-11-149]

An attacker can send a long omniiaputil message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1734, ZDI-11-150]

An attacker can send a long message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1735, ZDI-11-151]

An attacker can send a GET_FILE message, in order to read a file located outsitde the server root. [severity:2/4; CVE-2011-1736, ZDI-11-152]

A remote attacker can therefore use nine vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2011-0921 CVE-2011-0922 CVE-2011-0923

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

A remote attacker can use several vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Impacted products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: administrator access/rights.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 4.
Creation date: 08/02/2011.
Identifiers: BID-46234, c02781143, CERTA-2011-AVI-260, CVE-2011-0921, CVE-2011-0922, CVE-2011-0923, CVE-2011-0924, HPSBMA02654, SSRT100441, VIGILANCE-VUL-10340, ZDI-11-054, ZDI-11-055.

Description of the vulnerability

The HP OpenView Storage Data Protector manages data of an enterprise. Four vulnerabilities were announced.

An attacker can use EXEC_CMD omni_chk_ds.sh, in order to execute code in HP Data Protector Client. [severity:3/4; CVE-2011-0924, ZDI-11-054]

An attacker can use EXEC_CMD, in order to execute Perl code in HP Data Protector Client. [severity:3/4; CVE-2011-0923, ZDI-11-055]

An attacker can use EXEC_SETUP, in order to execute code in HP Data Protector Client. [severity:3/4; CVE-2011-0922]

An attacker can bypass the authentication of HP Data Protector Cell Manager. [severity:3/4; CERTA-2011-AVI-260, CVE-2011-0921]
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2011-0273

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

A remote attacker can generate a buffer overflow in HP OpenView Storage Data Protector, in order to execute code.
Impacted products: OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: user access/rights.
Provenance: intranet client.
Creation date: 19/01/2011.
Revision date: 21/01/2011.
Identifiers: BID-45929, c02688353, CERTA-2011-AVI-029, CVE-2011-0273, HPSBMA02625, SSRT100138, VIGILANCE-VUL-10285, ZDI-11-024.

Description of the vulnerability

The HP OpenView Storage Data Protector product manages data of an enterprise.

The Data Protector Cell Manager does not correctly process the size of data in messages. A buffer overflow can then occur in the crs.exe process.

A remote attacker can therefore generate a buffer overflow in HP OpenView Storage Data Protector, in order to execute code.
Full Vigil@nce bulletin... (Free trial)

vulnerability announce CVE-2011-0275

HP OpenView Data Protector: denial of service

Synthesis of the vulnerability

An attacker can send a malicious packet to HP OpenView Data Protector, in order to stop it.
Impacted products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity: 2/4.
Consequences: denial of service on service.
Provenance: intranet client.
Creation date: 02/12/2010.
Identifiers: BID-45128, c02699143, CERTA-2011-AVI-034, CVE-2011-0275, HPSBMA02626, SSRT100301, VIGILANCE-VUL-10172.

Description of the vulnerability

The HP OpenView Storage Data Protector product processes data of an enterprise.

When the Media Management Daemon (mmd.exe, port 1026/tcp) service receives a malformed packet, a NULL pointer is dereferenced in OmniBack\bin\MSVCR71.dll.

An attacker can therefore send a malicious packet to HP OpenView Data Protector, in order to stop it.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2009-4183

HP OpenView Storage Data Protector: information disclosure

Synthesis of the vulnerability

A local attacker can read data of HP OpenView Storage Data Protector.
Impacted products: OpenView, OpenView Storage Data Protector.
Severity: 2/4.
Consequences: data reading.
Provenance: user shell.
Creation date: 27/01/2010.
Identifiers: BID-37964, c01992642, CERTA-2010-AVI-036, CVE-2009-4183, HPSBMA02502, SSRT090171, VIGILANCE-VUL-9381.

Description of the vulnerability

The HP OpenView Storage Data Protector product manages data of an enterprise.

A local attacker can read data of HP OpenView Storage Data Protector.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2007-2280 CVE-2007-2281

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

Two vulnerabilities of HP OpenView Storage Data Protector can be used by a remote attacker to execute code.
Impacted products: OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: administrator access/rights, privileged access/rights, user access/rights.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 2.
Creation date: 17/12/2009.
Revision date: 18/12/2009.
Identifiers: BID-37386, BID-37396, c01124817, CVE-2007-2280, CVE-2007-2281, HPSBMA02252, SSRT061258, SSRT061259, TPTI-09-15, VIGILANCE-VUL-9297, ZDI-09-099.

Description of the vulnerability

The HP OpenView Storage Data Protector product manages data of an enterprise. Two vulnerabilities of HP OpenView DP can be used by a remote attacker to execute code.

An attacker can send a long MSG_PROTOCOL message, in order to generate an overflow in the Backup Client Service Daemon (OmniInet.exe). [severity:3/4; BID-37396, CVE-2007-2280, ZDI-09-099]

An attacker can send a malformed message to the Cell Manager Database Service (rds.exe) in order to generate an integer overflow in the _ncp32._NtrpTCPReceiveMsg() function. [severity:3/4; BID-37386, CVE-2007-2281, TPTI-09-15]
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin 6538

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

A local attacker can use HP OpenView Storage Data Protector to execute code with elevated privileges.
Impacted products: OpenView, OpenView Storage Data Protector.
Severity: 2/4.
Consequences: privileged access/rights.
Provenance: user shell.
Creation date: 08/02/2007.
Identifiers: BID-22488, c00862204, HPSBMA02190, SSRT071300, VIGILANCE-VUL-6538.

Description of the vulnerability

The HP OpenView Storage Data Protector program is a backup manager.

The owner:group of one of its backup program in incorrect. This error exists when the following patch is installed:
 - PHSS_35149 or PHSS_35150 (under HP-UX)
 - DPSOL_00229 (under Solaris)

A local attacker can for example alter this program in order to execute code with privileges of backup process.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.