The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of MicroFocus Data Protector

vulnerability bulletin CVE-2013-2344 CVE-2013-2345 CVE-2013-2346

HP Data Protector: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of HP Data Protector.
Impacted products: HP Data Protector.
Severity: 3/4.
Consequences: administrator access/rights, privileged access/rights, user access/rights, client access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 9.
Creation date: 03/01/2014.
Revision date: 13/01/2014.
Identifiers: BID-64647, c03822422, CVE-2013-2344, CVE-2013-2345, CVE-2013-2346, CVE-2013-2347, CVE-2013-2348, CVE-2013-2349, CVE-2013-2350, CVE-2013-6194, CVE-2013-6195, HPSBMU02895, SSRT101217, SSRT101218, SSRT101219, SSRT101220, SSRT101221, SSRT101222, SSRT101223, SSRT101233, SSRT101253, SSRT101348, VIGILANCE-VUL-14013, ZDI-14-001, ZDI-14-002, ZDI-14-003, ZDI-14-004, ZDI-14-005, ZDI-14-006, ZDI-14-007, ZDI-14-008, ZDI-14-009, ZDI-CAN-1866, ZDI-CAN-1869, ZDI-CAN-1870, ZDI-CAN-1885, ZDI-CAN-1892, ZDI-CAN-1896, ZDI-CAN-1897, ZDI-CAN-1905, ZDI-CAN-2008.

Description of the vulnerability

Several vulnerabilities were announced in HP Data Protector.

An attacker can send a command to OmniInet.exe, in order to execute code. [severity:3/4; CVE-2013-2344, SSRT101217, ZDI-14-001, ZDI-CAN-1866]

An attacker can generate a buffer overflow in vrda.exe, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; CVE-2013-2345, SSRT101218, ZDI-14-006, ZDI-CAN-1869]

An attacker can generate a buffer overflow in rrda.exe, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; CVE-2013-2346, SSRT101219, ZDI-14-004, ZDI-CAN-1870]

An attacker can send an EXEC_BAR packet, in order to execute code. [severity:3/4; CVE-2013-2347, SSRT101220, ZDI-14-008, ZDI-CAN-1885]

An attacker can traverse directories in OmniInet.exe, in order to write a file outside the root path, to execute it. [severity:3/4; CVE-2013-2348, SSRT101221, ZDI-14-002, ZDI-CAN-1892]

An attacker can generate a buffer overflow in vbda.exe, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; CVE-2013-2349, SSRT101222, ZDI-14-005, ZDI-CAN-1896]

An attacker can generate a buffer overflow in rbda.exe, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; CVE-2013-2350, SSRT101223, ZDI-14-007, ZDI-CAN-1897]

An attacker can traverse directories in OmniInet.exe, in order to write a file outside the root path, to execute it. [severity:3/4; CVE-2013-6194, SSRT101233, ZDI-14-003, ZDI-CAN-1905]

An attacker can generate a buffer overflow in crs.exe, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; CVE-2013-6195, SSRT101348, ZDI-14-009, ZDI-CAN-2008]
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2013-2324 CVE-2013-2325 CVE-2013-2326

HP Data Protector: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of HP Data Protector, in order to trigger a denial of service or to execute code.
Impacted products: HP Data Protector.
Severity: 3/4.
Consequences: user access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 12.
Creation date: 04/06/2013.
Identifiers: BID-60299, BID-60300, BID-60301, BID-60302, BID-60303, BID-60304, BID-60306, BID-60307, BID-60308, BID-60309, BID-60310, BID-60311, c03781657, CVE-2013-2324, CVE-2013-2325, CVE-2013-2326, CVE-2013-2327, CVE-2013-2328, CVE-2013-2329, CVE-2013-2330, CVE-2013-2331, CVE-2013-2332, CVE-2013-2333, CVE-2013-2334, CVE-2013-2335, HPSBMU02883, SSRT101227, VIGILANCE-VUL-12900, ZDI-13-121, ZDI-13-122, ZDI-13-123, ZDI-13-124, ZDI-13-125, ZDI-13-126, ZDI-13-127, ZDI-13-128, ZDI-13-129, ZDI-13-130, ZDI-13-131, ZDI-13-161.

Description of the vulnerability

Several vulnerabilities were announced in HP Data Protector.

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60299, CVE-2013-2324, ZDI-13-121]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60300, CVE-2013-2325, ZDI-13-122]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60301, CVE-2013-2326, ZDI-13-123]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60302, CVE-2013-2327, ZDI-13-124]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60303, CVE-2013-2328, ZDI-13-125]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60304, CVE-2013-2329, ZDI-13-126]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60306, CVE-2013-2330, ZDI-13-127]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60307, CVE-2013-2331, ZDI-13-128]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60308, CVE-2013-2332, ZDI-13-129]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60309, CVE-2013-2333, ZDI-13-130]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60310, CVE-2013-2334, ZDI-13-131]

An attacker can generate a memory corruption, in order to trigger a denial of service, and possibly to execute code. [severity:3/4; BID-60311, CVE-2013-2335, ZDI-13-161]
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2012-5220

HP Data Protector: privilege escalation

Synthesis of the vulnerability

A local attacker can use a vulnerability of HP Data Protector, in order to escalate his privileges.
Impacted products: HP Data Protector.
Severity: 2/4.
Consequences: administrator access/rights, privileged access/rights, user access/rights, data reading, data creation/edition, denial of service on service.
Provenance: user account.
Creation date: 25/04/2013.
Identifiers: BID-59488, c03570121, CVE-2012-5220, HPSBMU02830, SSRT100889, VIGILANCE-VUL-12710.

Description of the vulnerability

A local attacker can use a vulnerability of HP Data Protector, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2012-0121 CVE-2012-0122 CVE-2012-0123

HP Data Protector Express: four vulnerabilities

Synthesis of the vulnerability

Four vulnerabilities of HP Data Protector Express can be used by an attacker, in order to create a denial of service or to execute code.
Impacted products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: user access/rights, denial of service on service.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 4.
Creation date: 13/03/2012.
Revisions dates: 22/06/2012, 02/07/2012.
Identifiers: BID-52431, c03229235, CERTA-2012-AVI-146, CVE-2012-0121, CVE-2012-0122, CVE-2012-0123, CVE-2012-0124, HPSBMU02746, SSRT100781, TPTI-12-06, VIGILANCE-VUL-11430, ZDI-12-096, ZDI-12-097, ZDI-CAN-1392, ZDI-CAN-1393, ZDI-CAN-1498.

Description of the vulnerability

Four vulnerabilities were announced in HP Data Protector Express.

An attacker can send a message with the opcode 0x320, which generates a buffer overflow in dpwinsdr.exe, in order to create a denial of service or to execute code. [severity:3/4; CVE-2012-0121, ZDI-12-097, ZDI-CAN-1392]

An attacker can send a message with the opcode 0x330, which generates a buffer overflow in dpwinsdr.exe, in order to create a denial of service or to execute code. [severity:3/4; CVE-2012-0122, ZDI-12-096, ZDI-CAN-1393]

An attacker can use a malicious DtbClsAddObject query, in order to generate a buffer overflow in dpwintdb.exe, which can be used to create a denial of service or to execute code. [severity:3/4; CVE-2012-0123, TPTI-12-06, ZDI-CAN-1498]

An attacker can use a long directory name, in order to generate a buffer overflow in dpwindtb.dll/dpwintdb.exe, which can be used to create a denial of service or to execute code. [severity:3/4; CVE-2012-0124]
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2011-4791

HP Data Protector Storage Media Operations: code execution

Synthesis of the vulnerability

An attacker can send a malformed query to HP Data Protector Media Operations, in order to generate a buffer overflow, which leads to code execution with system privileges.
Impacted products: HP Data Protector.
Severity: 3/4.
Consequences: administrator access/rights, privileged access/rights, user access/rights.
Provenance: intranet client.
Creation date: 02/02/2012.
Identifiers: c03179046, CVE-2011-4791, HPSBMU02739, SSRT100280, VIGILANCE-VUL-11336, ZDI-11-112, ZDI-CAN-956.

Description of the vulnerability

The HP Data Protector product listens on port 19813/tcp (process DBServer.exe).

Queries received by DBServer.exe indicate a data size on 32 bit. However, DBServer uses this size, without checking it, to copy data. An overflow thus occurs.

An attacker can therefore send a malformed query to HP Data Protector Media Operations, in order to generate a buffer overflow, which leads to code execution with system privileges.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2011-3156 CVE-2011-3157 CVE-2011-3158

HP Data Protector: several vulnerabilities

Synthesis of the vulnerability

Several vulnerabilities of HP Data Protector Notebook Extension can be used by an attacker, in order to execute code.
Impacted products: HP Data Protector.
Severity: 3/4.
Consequences: user access/rights.
Provenance: document.
Number of vulnerabilities in this bulletin: 7.
Creation date: 18/10/2011.
Revision date: 08/11/2011.
Identifiers: BID-50181, c03054543, c03058866, CERTA-2011-AVI-588, CVE-2011-3156, CVE-2011-3157, CVE-2011-3158, CVE-2011-3159, CVE-2011-3160, CVE-2011-3161, CVE-2011-3162, HPSBMP02713, HPSBMU02716, SSRT100651, VIGILANCE-VUL-11067, ZDI-11-321, ZDI-11-322, ZDI-11-323, ZDI-11-324, ZDI-11-325, ZDI-11-326, ZDI-11-327.

Description of the vulnerability

Several vulnerabilities were announced in HP Data Protector Notebook Extension.

An attacker can use the LogClientInstallation method of the DPNECentral service, in order to inject SQL code. [severity:3/4; CERTA-2011-AVI-588, CVE-2011-3156, ZDI-11-326]

An attacker can use the GetPolicies method of the DPNECentral service, in order to inject SQL code. [severity:3/4; CVE-2011-3157, ZDI-11-325]

An attacker can use the RequestCopy method of the DPNECentral service, in order to inject SQL code. [severity:3/4; CVE-2011-3158, ZDI-11-324]

An attacker can use the LogClientHealth method of the DPNECentral service, in order to inject SQL code. [severity:3/4; CVE-2011-3159, ZDI-11-323]

An attacker can use the LogCopyOperation method of the DPNECentral service, in order to inject SQL code. [severity:3/4; CVE-2011-3160, ZDI-11-322]

An attacker can use the LogBackupLocationStatus method of the DPNECentral service, in order to inject SQL code. [severity:3/4; CVE-2011-3161, ZDI-11-327]

An attacker can use the FinishedCopy method of the DPNECentral service, in order to inject SQL code. [severity:3/4; CVE-2011-3162, ZDI-11-321]
Full Vigil@nce bulletin... (Free trial)

vulnerability note 11124

HP Data Protector: two vulnerabilities

Synthesis of the vulnerability

An attacker can use two vulnerabilities of HP Data Protector, in order to read a file, to create a denial of service or to execute code.
Impacted products: HP Data Protector.
Severity: 3/4.
Consequences: privileged access/rights, user access/rights, data reading.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 2.
Creation date: 04/11/2011.
Identifiers: BID-50531, BID-50558, VIGILANCE-VUL-11124.

Description of the vulnerability

The HP Data Protector product listens on port 19813/tcp (process DBServer.exe). It is impacted by two vulnerabilities.

An attacker can send a message containing "../..", in order to read a file from the current partition. [severity:2/4; BID-50531]

An attacker can send a large message, in order to create a buffer overflow. [severity:3/4; BID-50558]
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2011-2399

HP Data Protector: denial of service via MMD

Synthesis of the vulnerability

A remote attacker can create a denial of service in the Media Management Daemon of HP Data Protector.
Impacted products: HP Data Protector.
Severity: 2/4.
Consequences: denial of service on service.
Provenance: intranet client.
Creation date: 28/07/2011.
Identifiers: c02940981, CVE-2011-2399, HPSBMU02669, SSRT100346, VIGILANCE-VUL-10876.

Description of the vulnerability

A remote attacker can create a denial of service in the MMD (Media Management Daemon) of HP Data Protector.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2011-1514 CVE-2011-1515 CVE-2011-1865

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

A remote attacker can use two vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Impacted products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: privileged access/rights, user access/rights.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 2.
Creation date: 29/06/2011.
Revision date: 30/06/2011.
Identifiers: BID-48486, BID-48488, c02872182, CORE-2011-0514, CORE-2011-0606, CVE-2011-1514, CVE-2011-1515, CVE-2011-1865, CVE-2011-1866, HPSBMU02686, SSRT100541, VIGILANCE-VUL-10791.

Description of the vulnerability

The HP OpenView Storage Data Protector product manages data of an enterprise. Its "data protector inet" service listens on the port 5555/tcp and it is impacted by two vulnerabilities.

A remote attacker can send malformed data to this service, in order to create several overflows. [severity:3/4; BID-48486, CORE-2011-0514, CVE-2011-1514, CVE-2011-1515, CVE-2011-1865]

A remote attacker can send large data, in order to create a buffer overflow. [severity:3/4; BID-48488, CORE-2011-0606, CVE-2011-1866]

A remote attacker can therefore use two vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin CVE-2011-1728 CVE-2011-1729 CVE-2011-1730

HP OpenView Storage Data Protector: code execution

Synthesis of the vulnerability

A remote attacker can use nine vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Impacted products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity: 3/4.
Consequences: administrator access/rights, privileged access/rights, data reading.
Provenance: intranet client.
Number of vulnerabilities in this bulletin: 9.
Creation date: 29/04/2011.
Revision date: 02/05/2011.
Identifiers: BID-47638, c02810240, CVE-2011-1728, CVE-2011-1729, CVE-2011-1730, CVE-2011-1731, CVE-2011-1732, CVE-2011-1733, CVE-2011-1734, CVE-2011-1735, CVE-2011-1736, HPSBMA02668, SSRT100474, VIGILANCE-VUL-10608, ZDI-11-144, ZDI-11-145, ZDI-11-146, ZDI-11-147, ZDI-11-148, ZDI-11-149, ZDI-11-150, ZDI-11-151, ZDI-11-152.

Description of the vulnerability

The HP OpenView Storage Data Protector product manages data of an enterprise. The OmniInet.exe service (Backup Client Service) listens on the port 5555/tcp. It is impacted by nine vulnerabilities.

An attacker can send a long EXEC_BAR message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1728, ZDI-11-144]

An attacker can send a long GET_FILE message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1729, ZDI-11-145]

An attacker can send a long EXEC_SCRIPT message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1730, ZDI-11-146]

An attacker can send a long EXEC_INTEGUTIL message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1731, ZDI-11-147]

An attacker can send a long message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1732, ZDI-11-148]

An attacker can send a long HPFGConfig message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1733, ZDI-11-149]

An attacker can send a long omniiaputil message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1734, ZDI-11-150]

An attacker can send a long message, in order to create a buffer overflow. [severity:3/4; CVE-2011-1735, ZDI-11-151]

An attacker can send a GET_FILE message, in order to read a file located outsitde the server root. [severity:2/4; CVE-2011-1736, ZDI-11-152]

A remote attacker can therefore use nine vulnerabilities of HP OpenView Storage Data Protector, in order to execute code.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about MicroFocus Data Protector: