APP: HP DataProtector Directory Traversal
his signature detects an attempt to exploit a known vulnerability against HP DataProtector application. Successful exploitation could allow an attacker to execute arbitrary codes into the context of the running application.
Extended Description
Directory traversal vulnerability in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to read arbitrary files via directory traversal sequences in a filename in a GET_FILE message.
Affected Products
Hp openview_storage_data_protector
Short Name
APP:HP-PROTECTOR-DIR-TRAV
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2011-1736 DataProtector Directory HP Traversal bid:47638
Release Date
10/27/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/5555
False Positive
Unknown
Vendors
Hp
CVSS Score
8.5