CVE-2001-0311

HP OmniBackII <A.03.50 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2001-0311. PoCs published by Metasploit, H D Moore, DiGiT, including Metasploit module exploits/multi/misc/openview_omniback_exec.

AI-analyzed exploit summary This Metasploit module exploits a command execution vulnerability in HP OpenView OmniBack II by sending a crafted payload to TCP port 5555, allowing arbitrary command execution on Unix and Windows targets. The exploit leverages directory traversal and command injection techniques.

Description

Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotemultiple
https://www.exploit-db.com/exploits/16291

This Metasploit module exploits a command execution vulnerability in HP OpenView OmniBack II by sending a crafted payload to TCP port 5555, allowing arbitrary command execution on Unix and Windows targets. The exploit leverages directory traversal and command injection techniques.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HP OpenView OmniBack II
No auth needed
Prerequisites: Network access to TCP port 5555 on the target
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by H D Moore · rubyremotemultiple
https://www.exploit-db.com/exploits/9942

This Metasploit module exploits a command execution vulnerability in HP OpenView OmniBack II by sending a crafted TCP payload to port 5555, allowing arbitrary command execution on Unix and Windows targets.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HP OpenView OmniBack II
No auth needed
Prerequisites: Network access to TCP port 5555 on the target
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by DiGiT · cremotemultiple
https://www.exploit-db.com/exploits/1114

This exploit targets a remote command execution vulnerability in HP OpenView OmniBack II by sending a crafted payload to port 5555, allowing arbitrary command execution as root. The code establishes a socket connection, sends a malformed request with a path traversal to spawn a shell, and provides an interactive shell interface.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HP OpenView OmniBack II
No auth needed
Prerequisites: Network access to the target's port 5555 · Vulnerable version of HP OpenView OmniBack II
devstral-2 · analyzed Feb 18, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by hdm, aushack · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/openview_omniback_exec.rb

This Metasploit module exploits a command execution vulnerability in HP OpenView OmniBack II by sending a malformed packet to port 5555, allowing arbitrary command execution on Unix and Windows targets. The exploit leverages directory traversal and command injection techniques.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: HP OpenView OmniBack II
No auth needed
Prerequisites: Network access to port 5555 · Vulnerable version of HP OpenView OmniBack II
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory issue-tracking x_refsource_hpbug
http://archives.neohapsis.com/archives/hp/2001-q1/0022.html
Third Party Advisory issue-tracking x_refsource_hpbug
http://archives.neohapsis.com/archives/hp/2001-q1/0023.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6434
Various Sources vendor-advisory x_refsource_hp
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0102-142

Scores

EPSS 0.1164
EPSS Percentile 95.5%

Details

Status published
Products (2)
hp/hp-ux < 11
hp/omniback_ii a.03.50
Published Jun 02, 2001
Tracked Since Feb 18, 2026