CVE-2011-1736

CWE-22Path Traversal4 documents4 sources
Severity
8.5HIGH
EPSS
29.4%
top 3.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP Openview Storage Data Protector
Timeline
PublishedMay 7
Latest updateMay 14

Description

Directory traversal vulnerability in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to read arbitrary files via directory traversal sequences in a filename in a GET_FILE message.

CVSS vector

AV:N/AC:L/C:C/I:N/A:PExploitability: 10.0 | Impact: 7.8

Affected Packages1 packages

NVDhp/openview_storage_data_protector6.00, 6.10, 6.11+2

🔴Vulnerability Details

2
GHSA
GHSA-x6wx-wj3h-736h: Directory traversal vulnerability in OmniInet2022-05-14
CVEList
CVE-2011-1736: Directory traversal vulnerability in OmniInet2011-05-07

💥Exploits & PoCs

1
Exploit-DB
Blackmoon FTP 3.1 Build 1735/1736 - Denial of Service2011-01-13
CVE-2011-1736 (HIGH CVSS 8.5) | Directory traversal vulnerability i | cvebase.io