HP Data Protector 'EXEC_INTEGUTIL' Arbitrary Command Execution

critical Nessus Plugin ID 79233

Synopsis

The remote host is affected by an arbitrary command execution vulnerability.

Description

Nessus was able to execute an operating system command on the remote HP Data Protector installation by sending a specially crafted 'EXEC_INTEGUTIL' packet to the HP Data Protector service.

Solution

A patched version is not currently available. As a workaround, enable Encrypted Control Communications (ECC) services on the cell server and all of the clients in the cell.

See Also

https://www.zerodayinitiative.com/advisories/ZDI-14-344/

Plugin Details

Severity: Critical

ID: 79233

File Name: hp_data_protector_zdi_14_344.nbin

Version: 1.71

Type: remote

Family: Misc.

Published: 11/13/2014

Updated: 3/19/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:hp:storage_data_protector, cpe:/a:hp:data_protector

Required KB Items: Services/data_protector/version

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 10/2/2014

Reference Information

BID: 70244