Description
Unspecified vulnerability in the dpwinsup module (dpwinsup.dll) for dpwingad (dpwingad.exe) in HP Data Protector Express and Express SSE 3.x before build 47065, and Express and Express SSE 4.x before build 46537, allows remote attackers to cause a denial of service (application crash) or read portions of memory via one or more crafted packets.
Affected products
- HP / data_protector_express3.5 β 3.5
- HP / data_protector_express3.5 β 3.5
- HP / data_protector_express3.5 β 3.5
- HP / data_protector_express4.0 β 4.0
- HP / data_protector_express4.0 β 4.0
References
- MISChttp://www.securitytracker.com/id?1022220
- MISChttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543
- MISChttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543
- EXPLOIThttps://www.exploit-db.com/exploits/9007
- MISChttp://ivizsecurity.com/security-advisory-iviz-sr-09002.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/35084
- MISChttp://www.securityfocus.com/bid/34955
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/1309
- EXPLOIThttps://www.exploit-db.com/exploits/9006