APP: HP Data Protector CRS Opcode 227 Remote Code Execution

This signature detects attempts to exploit a known vulnerability in the HP Data Protector. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected server.

Extended Description

Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1733.

Affected Products

Hp storage_data_protector

References

BugTraq: 60311

CVE: CVE-2013-2335

Short Name
APP:HP-DATA-PRTCTR-OP227-BO
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
227 CRS CVE-2013-2335 Code Data Execution HP Opcode Protector Remote bid:60311
Release Date
07/30/2013
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3336
Port
TCP/1024-3127,3129-7999,8001-8079,8081-65535
False Positive
Unknown
Vendors

Hp

CVSS Score

10.0

Found a potential security threat?