How to Buy
This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.
The remote service allows remote execution of arbitrary commands
The remote HP Data Protector client or server service is affected by
a command execution vulnerability. A malicious user can send a
specially crafted packet that causes this service to execute an
arbitrary shell command with system privileges.
See also :
1. Upgrade to Data Protector A.06.20 or later and
2. Enable encrypted control communication services on cell server and
all clients in cell.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.3
Public Exploit Available : true
Family: Gain a shell remotely
Nessus Plugin ID: 53641 ()
Bugtraq ID: 46234
CVE ID: CVE-2011-0923
Get Nessus Professional to scan unlimited IPs, run compliance checks & more
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.