CVE-2010-3007

HP Data Protector <4.0 - Privilege Escalation/DoS

Title source: llm

Description

Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 allows local users to gain privileges or cause a denial of service via unknown vectors.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/23290

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by AbdulAziz Hariri, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/hp_dataprotector_dtbclslogin.rb

View Code ZIP pw:eip

References (1)

[Various Sources] http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02498535

Scores

EPSS 0.2557

EPSS Percentile 96.2%

Details

Status published

Products (3)

hp/data_protector_express 3.1 (2 CPE variants)

hp/data_protector_express 3.5 sp1 (4 CPE variants)

hp/data_protector_express 4.0 (4 CPE variants)

Published Sep 09, 2010

Tracked Since Feb 18, 2026