Vulnerability Details : CVE-2011-0924
The client in HP Data Protector does not verify the contents of files associated with the EXEC_CMD command, which allows remote attackers to execute arbitrary script code by providing this code with a trusted filename, as demonstrated by omni_chk_ds.sh.
Products affected by CVE-2011-0924
- cpe:2.3:a:hp:data_protector:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-0924
13.35%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 94 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-0924
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2011-0924
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-0924
-
http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-hp
Threat Intelligence | Digital Vaccine® | ThreatLinQ | Trend Micro
-
http://www.securityfocus.com/bid/46234
HP OpenView Storage Data Protector Multiple Remote Code Execution Vulnerabilities
-
http://zerodayinitiative.com/advisories/ZDI-11-054/
ZDI-11-054 | Zero Day Initiative
-
http://www.securityfocus.com/archive/1/516258/100/0/threaded
SecurityFocus
-
http://www.vupen.com/english/advisories/2011/0308
Webmail | OVH- OVHVendor Advisory
-
http://marc.info/?l=bugtraq&m=130391284726795&w=2
'[security bulletin] HPSBMA02654 SSRT100441 rev.1 - HP OpenView Storage Data Protector, Remote Execut' - MARC
Jump to