CVE-2011-0922

HP Data Protector - Improper Input Validation

Title source: rule

Description

The client in HP Data Protector allows remote attackers to execute arbitrary programs via an EXEC_SETUP command that references a UNC share pathname.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Ben Turner · rubyremotewindows

https://www.exploit-db.com/exploits/27271

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Ben Turner · pythonremotewindows

https://www.exploit-db.com/exploits/19288

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by fdiskyou · pythonremotewindows

https://www.exploit-db.com/exploits/17345

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Ben Turner · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/hp_dataprotector_install_service.rb

View Code ZIP pw:eip

References (6)

[Various Sources] http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-hp

[Mailing List] http://marc.info/?l=bugtraq&m=130391284726795&w=2

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/46234

[Vendor Advisory] http://www.vupen.com/english/advisories/2011/0308

[Third Party Advisory] http://zerodayinitiative.com/advisories/ZDI-11-056/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/516272/100/0/threaded

Scores

EPSS 0.8201

EPSS Percentile 99.2%

Details

CWE

CWE-20

Status published

Products (1)

hp/data_protector

Published Feb 09, 2011

Tracked Since Feb 18, 2026