Signature Detail
Short Name |
APP:HP-DATA-PRTCTR-EXEC-BAR-CE |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP Data Protector EXEC_BAR Command Execution |
Release Date |
2014/03/02 |
Update Number |
2350 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: HP Data Protector EXEC_BAR Command Execution
This signature detects attempts to exploit a known vulnerability in the HP Data Protector. A successful attack can lead to arbitrary command execution.
Extended Description
Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors, aka ZDI-CAN-1885.
Affected Products
- hp storage_data_protector 6.20 (-:~~~windows_server_2003~~)
- hp storage_data_protector 6.20 (-:~~~windows_server_2008~~)
- hp storage_data_protector 6.21 (-:~~~hp-ux~~)
- hp storage_data_protector 6.21 (-:~~~redhat_enterprise_linux~~)
- hp storage_data_protector 6.21 (-:~~~solaris~~)
- hp storage_data_protector 6.21 (-:~~~windows_server_2003~~)
- hp storage_data_protector 6.21 (-:~~~windows_server_2008~~)
References
- CVE: CVE-2013-2347