Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2009-0714

Unspecified vulnerability in the dpwinsup module (dpwinsup.dll) for dpwingad (dpwingad.exe) in HP Data Protector Express and Express SSE 3.x before build 47065, and Express and Express SSE 4.x before build 46537, allows remote attackers to cause a denial of service (application crash) or read portions of memory via one or more crafted packets.

Published

2009-05-14T17:30:00.547

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.2 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	microsoft	windows	*	No
Operating System	novell	netware	*	No
Operating System	redhat	linux	*	No
Operating System	suse	suse_linux	-	No
Application	hp	data_protector_express	3.5	Yes
Application	hp	data_protector_express	3.5	Yes
Application	hp	data_protector_express	3.5	Yes
Application	hp	data_protector_express	4.0	Yes
Application	hp	data_protector_express	4.0	Yes

References

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543 Vendor Advisory ([email protected])
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543 Vendor Advisory ([email protected])
http://ivizsecurity.com/security-advisory-iviz-sr-09002.html Broken Link ([email protected])
http://secunia.com/advisories/35084 Third Party Advisory ([email protected])
http://www.securityfocus.com/bid/34955 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id?1022220 Third Party Advisory, VDB Entry ([email protected])
http://www.vupen.com/english/advisories/2009/1309 Third Party Advisory ([email protected])
https://www.exploit-db.com/exploits/9006 Exploit, Third Party Advisory, VDB Entry ([email protected])
https://www.exploit-db.com/exploits/9007 Exploit, Third Party Advisory, VDB Entry ([email protected])
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://ivizsecurity.com/security-advisory-iviz-sr-09002.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35084 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/34955 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id?1022220 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/1309 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/9006 Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/9007 Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)