Short Name |
APP:HP-PROTECTOR-DIR-TRAV |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP DataProtector Directory Traversal |
Release Date |
2014/10/27 |
Update Number |
2433 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
his signature detects an attempt to exploit a known vulnerability against HP DataProtector application. Successful exploitation could allow an attacker to execute arbitrary codes into the context of the running application.
Directory traversal vulnerability in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to read arbitrary files via directory traversal sequences in a filename in a GET_FILE message.