Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2011-0922

Published: 09/02/2011 Updated: 09/10/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Data Protector

Vulnerability Summary

The client in HP Data Protector allows remote malicious users to execute arbitrary programs via an EXEC_SETUP command that references a UNC share pathname.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

hp data protector

Exploits

Exploit DB: HP Data Protector Client 6.11 - 'EXEC_SETUP' Remote Code Execution
# Exploit Title: HP Data Protector Cliet EXEC_SETUP Remote Code Execution Vulnerability PoC (ZDI-11-056) # Date: 2011-05-29 # Author: @fdiskyou # e-mail: rui at deniableorg # Version: 611 # Tested on: Windows 2003 Server SP2 en # CVE: CVE-2011-0922 # Notes: ZDI-11-056 # Reference: wwwzerodayinitiativecom/advisories/ZDI-11-056/ # Refere ...
Exploit DB: HP Data Protector - CMD Install Service (Metasploit)
## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # web site for more information on licensing and terms of use # metasploitcom/ ## # Exploit Title: HP Data Protector Client EXEC_CMD Remote Code Execution Vulnerability # Date: 2012-13-07 # Exp ...
Exploit DB: HP Data Protector Client - EXEC_CMD Remote Code Execution
#!/usr/bin/env python # Exploit Title: HP Data Protector Client EXEC_CMD Remote Code Execution Vulnerability # Date: 2012-12-06 # Exploit Author: Ben Turner # Vendor Homepage: wwwhpcom # Version: 611 & 620 # Tested on: Windows 2003 Server SP2 en # CVE: CVE-2011-0922 # Notes: ZDI-11-056 # Reference: wwwzerodayinitiativecom/advisori ...
Exploit DB: HP Data Protector Client 6.11 / 6.20 Remote Code Execution
HP Data Protector client versions 611 and 620 suffer from an EXEC_CMD remote code execution vulnerability ...
Exploit DB: HP Data Protector Client EXEC_SETUP Code Execution
HP Data Protector Client EXEC_SETUP remote code execution proof of concept exploit ...

References

CWE-20http://www.securityfocus.com/bid/46234http://zerodayinitiative.com/advisories/ZDI-11-056/http://www.vupen.com/english/advisories/2011/0308http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-hphttp://marc.info/?l=bugtraq&m=130391284726795&w=2http://www.securityfocus.com/archive/1/516272/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/17345/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook