APP: HP Data Protector Backup Client Service GET_FILE Buffer Overflow
This signature detects attempts to exploit a known flaw in HP Data Protector Backup Client Service. The vulnerability is due to a buffer overflow in the processing of GET_FILE messages. Remote unauthenticated attackers could exploit this vulnerability by sending a crafted request to the target service. Successful exploitation would allow attackers to execute arbitrary code with the privileges of the affected service which runs under the SYSTEM user on the Windows platforms.
Extended Description
HP OpenView Storage Data Protector is prone to multiple buffer-overflow vulnerabilities and an information-disclosure vulnerability. An attacker can exploit these issues to execute arbitrary code with SYSTEM-level privileges and obtain potentially sensitive information. Successful exploits will completely compromise an affected computer.
Affected Products
Hp openview_storage_data_protector
Short Name
APP:HPOV:HP-DPBC-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Backup Buffer CVE-2011-1729 Client Data GET_FILE HP Overflow Protector Service bid:47638
Release Date
06/20/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
tcp/5555
False Positive
Unknown
Vendors
Hp
CVSS Score
10.0