The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of HP Data Protector Express: four vulnerabilities

Synthesis of the vulnerability 

Four vulnerabilities of HP Data Protector Express can be used by an attacker, in order to create a denial of service or to execute code.
Vulnerable products: HP Data Protector, OpenView, OpenView Storage Data Protector.
Severity of this weakness: 3/4.
Number of vulnerabilities in this bulletin: 4.
Creation date: 13/03/2012.
Revisions dates: 22/06/2012, 02/07/2012.
Références of this bulletin: BID-52431, c03229235, CERTA-2012-AVI-146, CVE-2012-0121, CVE-2012-0122, CVE-2012-0123, CVE-2012-0124, HPSBMU02746, SSRT100781, TPTI-12-06, VIGILANCE-VUL-11430, ZDI-12-096, ZDI-12-097, ZDI-CAN-1392, ZDI-CAN-1393, ZDI-CAN-1498.

Description of the vulnerability 

Four vulnerabilities were announced in HP Data Protector Express.

An attacker can send a message with the opcode 0x320, which generates a buffer overflow in dpwinsdr.exe, in order to create a denial of service or to execute code. [severity:3/4; CVE-2012-0121, ZDI-12-097, ZDI-CAN-1392]

An attacker can send a message with the opcode 0x330, which generates a buffer overflow in dpwinsdr.exe, in order to create a denial of service or to execute code. [severity:3/4; CVE-2012-0122, ZDI-12-096, ZDI-CAN-1393]

An attacker can use a malicious DtbClsAddObject query, in order to generate a buffer overflow in dpwintdb.exe, which can be used to create a denial of service or to execute code. [severity:3/4; CVE-2012-0123, TPTI-12-06, ZDI-CAN-1498]

An attacker can use a long directory name, in order to generate a buffer overflow in dpwindtb.dll/dpwintdb.exe, which can be used to create a denial of service or to execute code. [severity:3/4; CVE-2012-0124]
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer vulnerability announce impacts software or systems such as HP Data Protector, OpenView, OpenView Storage Data Protector.

Our Vigil@nce team determined that the severity of this cybersecurity bulletin is important.

The trust level is of type confirmed by the editor, with an origin of intranet client.

This bulletin is about 4 vulnerabilities.

A proof of concept or an attack tool is available, so your teams have to process this alert. An attacker with a technician ability can exploit this threat alert.

Solutions for this threat 

HP Data Protector Express: corrected versions.
The following versions are corrected:
 - HP Data Protector Express 6.0.01 build 13958
 - HP Data Protector Express 5.0.01 build 70262
http://h20000.www2.hp.com/bizsupport/TechSupport/ProductList.jsp?prodSeriesId=1144272
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a computer security watch. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.