HP Data Protector Client EXEC_CMD Remote Code Execution Vulnerability

vendor:

https://www.rapid7.com/db/vulnerabilities/hp-dataprotector-cve-2011-0922/

by:

N/A

Doug McLeod"

CVSS

CVE-2011-0922

Remote Code Execution

6.10

CWE

Product Name: https://www.rapid7.com/db/vulnerabilities/hp-dataprotector-cve-2011-0922/

Affected Version From: HP

Affected Version To: Data Protector

Patch Exists: N/A

Related CWE: N/A

CPE: Windows 2003 Server SP2 en

Metasploit: N/A

Other Scripts: N/A

Nuclei References: N/A

Platforms Tested: N/A

N/A

HP Data Protector Client EXEC_CMD Remote Code Execution Vulnerability

This module exploits HP Data Protector omniinet process on Windows only. This invokes the install service function that allows for a reverse tcp payload to your host. To ensure this works, the SMB server must have a share called Omniback which has a subfolder i386, i.e. \192.168.1.1Omnibacki386",N/A,N/A,2012-13-07,Ben Turner

Mitigation:

6.20

Source

HP Data Protector Client EXEC_CMD Remote Code Execution Vulnerability

Mitigation:

Exploit-DB raw data: