Signature Detail
Short Name |
APP:HP-DATA-PROC-NEW-FOLDER |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP Data Protector Create New Folder Buffer Overflow |
Release Date |
2013/03/20 |
Update Number |
2247 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: HP Data Protector Create New Folder Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the HP Data Protector. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the application.
Extended Description
HP Data Protector Express is prone to multiple code-execution vulnerabilities. Successfully exploiting these issues allow an attacker to execute arbitrary code with SYSTEM privileges. HP Data Protector Express versions prior to 5.0.00 build 59287 and prior to 6.0.00 build 11974 are vulnerable.
Affected Products
- HP Data Protector Express 5.0.00
- HP Data Protector Express 5.0.01
- HP Data Protector Express 6.0.00
- HP Data Protector Express 6.0.01
References
- BugTraq: 52431
- CVE: CVE-2012-0122
- CVE: CVE-2012-0121
- CVE: CVE-2012-0124
- CVE: CVE-2012-0123
- URL: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03229235