APP: HP Data Protector CRS Opcode 1091 And 305 Remote Code Execution
This signature detects attempts to exploit a known vulnerability in the HP Data Protector. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1638.
Affected Products
Hp storage_data_protector
Short Name
APP:HP-DATA-PRTCTR-OP1091-305
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
1091 305 And CRS CVE-2013-2330 CVE-2013-2334 CVE-2014-5160 Code Data Execution HP Opcode Protector Remote bid:68855
Release Date
07/12/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/1024-3127,3129-7999,8001-8079,8081-65535
False Positive
Unknown
Vendors
Hp
CVSS Score
10.0
6.4