PT-2014-2584 · Hewlett Packard · Hp Storage Data Protector

Aniway.Anyway

Published

2014-01-04

Updated

2019-10-09

CVE-2013-2347

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions HP Storage Data Protector version 6.2X

Description The issue allows remote attackers to execute arbitrary commands or cause a denial of service. This is achieved by sending a crafted EXEC BAR packet to TCP port 5555.

Recommendations For HP Storage Data Protector version 6.2X, consider restricting access to TCP port 5555 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2013-2347

ZDI-14-008

Affected Products

Hp Storage Data Protector

PT-2014-2584 · Hewlett Packard · Hp Storage Data Protector

CVE-2013-2347

Related Identifiers

Affected Products

References · 9