How to Buy
This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.
The backup service running on the remote host is affected by multiple
According to its version and build number, the HP Data Protector
application running on the remote host is affected by the following
- Multiple buffer overflow conditions exist in the Backup
Client Service (OmniInet.exe) that allow an
unauthenticated, remote attacker to execute arbitrary
code on the affected host as a privileged user. Note
that these issues only affect HP Data Protector
installations running on Windows. (CVE-2011-1728,
CVE-2011-1729, CVE-2011-1730, CVE-2011-1731,
CVE-2011-1732, CVE-2011-1733, CVE-2011-1734,
- A directory traversal vulnerability exists in the Backup
Client Service (OmniInet.exe) that allows an
unauthenticated, remote attacker to view the contents of
arbitrary files on the affected host. Note that this
issue only affects HP Data Protector installations
running on Windows. (CVE-2011-1736)
- A flaw exists in the Media Management Daemon (mmd) that
allows an unauthenticated, remote attacker to cause a
denial of service condition. (CVE-2011-2399)
See also :
Apply the relevant patches referenced in the HP advisories.
Alternatively, enable the encrypted control communication services.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.8
Public Exploit Available : true
Nessus Plugin ID: 53857 ()
Bugtraq ID: 4763848917
CVE ID: CVE-2011-1728CVE-2011-1729CVE-2011-1730CVE-2011-1731CVE-2011-1732CVE-2011-1733CVE-2011-1734CVE-2011-1735CVE-2011-1736CVE-2011-2399
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.