PT-2014-2584 · Hewlett Packard · Hp Storage Data Protector

Aniway.Anyway

Publicado

2014-01-04

Atualizado

2019-10-09

CVE-2013-2347

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions HP Storage Data Protector version 6.2X

Description The issue allows remote attackers to execute arbitrary commands or cause a denial of service. This is achieved by sending a crafted EXEC BAR packet to TCP port 5555.

Recommendations For HP Storage Data Protector version 6.2X, consider restricting access to TCP port 5555 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2013-2347

ZDI-14-008

Produtos afetados

Hp Storage Data Protector

PT-2014-2584 · Hewlett Packard · Hp Storage Data Protector

CVE-2013-2347

Identificadores relacionados

Produtos afetados

Referências · 9