The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote malicious users to execute arbitrary Perl code via a crafted command, related to the "local bin directory."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp data protector |