CVE-2013-2333

HP Storage Data Protector <7.01 - RCE

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2013-2333. PoCs published by Metasploit, e6af8de8b1d4b2b6d5ba2610cbf9cd38, juan vazquez, including Metasploit module exploits/windows/misc/hp_dataprotector_crs.

AI-analyzed exploit summary This Metasploit module exploits a stack-based buffer overflow in HP Data Protector's Cell Request Service (crs.exe) via opcode 211. It achieves remote code execution by sending a maliciously crafted packet with a payload that triggers an SEH overwrite.

Description

Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1680.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/28973

View Code ZIP pw:eip

This Metasploit module exploits a stack-based buffer overflow in HP Data Protector's Cell Request Service (crs.exe) via opcode 211. It achieves remote code execution by sending a maliciously crafted packet with a payload that triggers an SEH overwrite.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP Data Protector 6.20 build 370, 7.00 build 72

No auth needed

Prerequisites: Network access to the target's CRS service · Target running a vulnerable version of HP Data Protector

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC NORMAL

by e6af8de8b1d4b2b6d5ba2610cbf9cd38, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/hp_dataprotector_crs.rb

View Code ZIP pw:eip

This Metasploit module exploits a stack-based buffer overflow in HP Data Protector's Cell Request Service (crs.exe) via opcode 211. It includes target-specific offsets and SEH overwrites for reliable exploitation on Windows XP SP3.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP Data Protector 6.20, 7.00

No auth needed

Prerequisites: Network access to the CRS service · Target running vulnerable HP Data Protector version

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_hp

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03781657

Scores

EPSS 0.9016

EPSS Percentile 99.8%

Details

Status published

Products (4)

hp/storage_data_protector 6.20 (6 CPE variants)

hp/storage_data_protector 6.21 (6 CPE variants)

hp/storage_data_protector 7.00 (5 CPE variants)

hp/storage_data_protector 7.01 (5 CPE variants)

Published Jun 06, 2013

Tracked Since Feb 18, 2026