Check Point Advisories

Update Protection against HP Data Protector OmniInet Service Null Dereference Denial of Service

Check Point Reference: CPAI-2011-104
Date Published: 9 Mar 2011
Severity: Critical
Last Updated: Saturday 01 January, 2011
Source: Secunia Advisory SA41735
Protection Provided by:
Who is Vulnerable? HP Data Protector Media Operations 6.11 and prior
Vulnerability Description A denial of service vulnerability exists in HP Data Protector OmniInet Service, one of the processes of the HP OpenView Storage Data Protector. Remote attackers could exploit this vulnerability by sending a maliciously crafted request to the target server. Successful exploitation could result in a denial of service condition, causing the target service to terminate.  
Update/Patch AvaliableThe vendor has not released an advisory addressing this vulnerability.
Vulnerability DetailsThe flaw is due to a NULL dereference error in the OmniInet Service when parsing malformed requests. A remote unauthenticated attacker can exploit this vulnerability by sending a maliciously crafted request, causing the server to terminate abnormally.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK