HP OpenView Storage Data Protector Cell Manager buffer overflow

Added: 01/29/2010

Background

HP Data Protector is an automated data backup solution.

Problem

A buffer overflow vulnerability in HP OpenView Storage Data Protector allows remote attackers to execute arbitrary commands by sending a specially crafted request to the Cell Manager service.

Resolution

Apply the update referenced in HPSBMA02252.

References

http://dvlabs.tippingpoint.com/advisory/TPTI-10-01

Limitations

Exploit works on HP OpenView Data Protector 5.5 on Microsoft Windows Server 2003 SP2 with patch KB933729.

Platforms

Windows

Back to exploit index