Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:HPE-DATA-PROTECT-USR-BO
Severity	Critical
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	HPE Data Protector EXEC_BAR username Buffer Overflow
Release Date	2016/08/04
Update Number	2765
Supported Platforms	idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: HPE Data Protector EXEC_BAR username Buffer Overflow

This signature detects attempts to exploit a known vulnerability in the OmniInet.exe component of HPE Data Protector. Successful exploitation could lead to arbitrary code execution under the security context of SYSTEM.

Extended Description

HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3352.

Affected Products

Hp data_protector 7.0
Hp data_protector 7.03
Hp data_protector 8.0
Hp data_protector 8.14
Hp data_protector 9.0
Hp data_protector 9.05

References

CVE: CVE-2016-2005

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: HPE Data Protector EXEC_BAR username Buffer Overflow

Extended Description

Affected Products

References