Hp Openview Storage Data Protector vulnerabilities

CVE-2011-1866 [CRITICAL] CWE-119 CVE-2011-1866: Buffer overflow in omniinet.exe in the inet service in HP OpenView Storage Data Protector 6.00 throu Buffer overflow in omniinet.exe in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to execute arbitrary code via a crafted request, related to the EXEC_CMD functionality.

CVE-2011-1865 [CRITICAL] CWE-119 CVE-2011-1865: Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allow remote attackers to execute arbitrary code via a request containing crafted parameters.

CVE-2011-1514 [MEDIUM] CVE-2011-1514: The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request containing crafted parameters.

CVE-2011-1515 [MEDIUM] CWE-399 CVE-2011-1515: The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (daemon exit) via a request containing crafted parameters.

CVE-2011-1864 [CRITICAL] CVE-2011-1864: Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote at Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to execute arbitrary code via unknown vectors.

CVE-2011-1734 [CRITICAL] CWE-119 CVE-2011-1734: Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed omniiaputil message.

CVE-2011-1729 [CRITICAL] CWE-119 CVE-2011-1729: Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed GET_FILE message.

CVE-2011-1735 [CRITICAL] CWE-119 CVE-2011-1735: Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed bm message.

CVE-2011-1732 [CRITICAL] CWE-119 CVE-2011-1732: Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed stutil message.

CVE-2011-1733 [CRITICAL] CWE-119 CVE-2011-1733: Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed HPFGConfig message.

CVE-2011-1731 [CRITICAL] CWE-119 CVE-2011-1731: Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed EXEC_INTEGUTIL message.

CVE-2011-1728 [CRITICAL] CWE-119 CVE-2011-1728: Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed EXEC_BAR message.

CVE-2011-1730 [CRITICAL] CWE-119 CVE-2011-1730: Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed EXEC_SCRIPT message.

CVE-2011-1736 [HIGH] CWE-22 CVE-2011-1736: Directory traversal vulnerability in OmniInet.exe in the Backup Client Service in HP OpenView Storag Directory traversal vulnerability in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to read arbitrary files via directory traversal sequences in a filename in a GET_FILE message.

CVE-2011-0275 [HIGH] CVE-2011-0275: Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote at Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to cause a denial of service via unknown vectors.

CVE-2009-4183 [MEDIUM] CVE-2009-4183: Unspecified vulnerability in HP OpenView Storage Data Protector 6.00 and 6.10 allows local users to Unspecified vulnerability in HP OpenView Storage Data Protector 6.00 and 6.10 allows local users to obtain unspecified "access" via unknown vectors.

CVE-2007-2281 [CRITICAL] CWE-189 CVE-2007-2281: Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database S Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via a large value in the size parameter.

CVE-2007-2280 [CRITICAL] CWE-119 CVE-2007-2280: Stack-based buffer overflow in OmniInet.exe (aka the backup client service daemon) in the Applicatio Stack-based buffer overflow in OmniInet.exe (aka the backup client service daemon) in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via an MSG_PROTOCOL command with long arguments, a different vulnerability than CVE-2009-3844.

CVE-2007-0866 [MEDIUM] CVE-2007-0866: Unspecified vulnerability in HP OpenView Storage Data Protector on HP-UX B.11.00, B.11.11, or B.11.2 Unspecified vulnerability in HP OpenView Storage Data Protector on HP-UX B.11.00, B.11.11, or B.11.23 allows local users to execute arbitrary code via unknown vectors.

CVE-2006-4201 [HIGH] CVE-2006-4201: Unspecified vulnerability in the backup agent and Cell Manager in HP OpenView Storage Data Protector Unspecified vulnerability in the backup agent and Cell Manager in HP OpenView Storage Data Protector 5.1 and 5.5 before 20060810 allows remote attackers to execute arbitrary code on an agent via unspecified vectors related to authentication and input validation.