HP Data Protector Multiple vulnerabilities
Severity: CRITICAL
CVE Identifier: CVE-2010-1515,CVE-2011-1514,CVE-2011-1865
Advisory Date: MAY 31, 2016
DESCRIPTION
Multiple vulnerabilities have been found in HP Data Protector that could allow a remote attacker to execute arbitrary code and lead to denial of service conditions. The vulnerabilities are triggered by sending a request to port 5555 of a host running the "data protector inet" service, part of HP Data Protector. The request has several parameters, including an opcode. By sending requests with specially crafted parameters, the different bugs can be triggered.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1004721
Trend Micro Deep Security DPI Rule Name: 1004721 - HP Data Protector Multiple Vulnerabilities
AFFECTED SOFTWARE AND VERSION
- HP Data Protector