Vulnerability Details : CVE-2013-2347
Public exploit exists!
The Backup Client Service (OmniInet.exe) in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary commands or cause a denial of service via a crafted EXEC_BAR packet to TCP port 5555, aka ZDI-CAN-1885.
Vulnerability category: Denial of service
Products affected by CVE-2013-2347
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:redhat_enterprise_linux:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:hp-ux:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:windows_server_2003:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:windows_server_2008:*:*
- cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2003:*:*
- cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2008:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:solaris:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-2347
43.86%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 97 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2013-2347
-
HP Data Protector Backup Client Service Remote Code Execution
Disclosure Date: 2014-01-02First seen: 2020-04-26exploit/windows/misc/hp_dataprotector_exec_barThis module abuses the Backup Client Service (OmniInet.exe) to achieve remote code execution. The vulnerability exists in the EXEC_BAR operation, which allows to execute arbitrary processes. This module has been tested successfully on HP Data Protector 6.20 on Window
CVSS scores for CVE-2013-2347
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2013-2347
-
http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03822422
Vendor Advisory
-
http://www.zerodayinitiative.com/advisories/ZDI-14-008/
ZDI-14-008 | Zero Day InitiativeThird Party Advisory
-
http://ddilabs.blogspot.com/2014/02/fun-with-hp-data-protector-execbar.html
BloggerPermissions Required
Jump to