Check Point Reference: |
CPAI-2011-104 |
Date Published: |
9 Mar 2011 |
Severity: |
Critical
|
Last Updated: |
Saturday 01 January, 2011 |
Source: |
Secunia Advisory SA41735 |
Protection Provided by: |
|
Who is Vulnerable? | HP Data Protector Media Operations 6.11 and prior |
Vulnerability Description |
A denial of service vulnerability exists in HP Data Protector OmniInet Service, one of the processes of the HP OpenView Storage Data Protector. Remote attackers could exploit this vulnerability by sending a maliciously crafted request to the target server. Successful exploitation could result in a denial of service condition, causing the target service to terminate. |
Update/Patch Avaliable | The vendor has not released an advisory addressing this vulnerability. |
Vulnerability Details | The flaw is due to a NULL dereference error in the OmniInet Service when parsing malformed requests. A remote unauthenticated attacker can exploit this vulnerability by sending a maliciously crafted request, causing the server to terminate abnormally. |