HP Data Protector Multiple Vulnerabilities

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote backup service is affected by multiple vulnerabilities.

Description :

According to its version and build number, the remote version of HP
Data Protector is potentially affected by multiple, unspecified
privilege escalation, denial of service, and code execution
vulnerabilities.

See also :

http://www.zerodayinitiative.com/advisories/ZDI-13-121/
http://www.zerodayinitiative.com/advisories/ZDI-13-122/
http://www.zerodayinitiative.com/advisories/ZDI-13-123/
http://www.zerodayinitiative.com/advisories/ZDI-13-124/
http://www.zerodayinitiative.com/advisories/ZDI-13-125/
http://www.zerodayinitiative.com/advisories/ZDI-13-126/
http://www.zerodayinitiative.com/advisories/ZDI-13-127/
http://www.zerodayinitiative.com/advisories/ZDI-13-128/
http://www.zerodayinitiative.com/advisories/ZDI-13-129/
http://www.zerodayinitiative.com/advisories/ZDI-13-130/
http://www.zerodayinitiative.com/advisories/ZDI-13-131/
http://www.nessus.org/u?ba42a692

Solution :

Apply the relevant patches referenced in HP's advisory.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true