HP.Data.Protector.All.Opcodes.Directory.Traversal
Description
This indicates an attack attempt to exploit a Directory Traversal vulnerability in HP Data Protector.
The vulnerability is due to an error when a vulnerable module handles a maliciously crafted request. A remote attacker could exploit this to gain unauthorized access to sensitive information via a crafted request. Also a remote attacker may be able to write malicious data in some files leading to code execution in vulnerable machines.
Affected Products
HP Data Protector 8.x and earlier versions
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03781657
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-10-05 | 16.937 | Sig Added |