Unrated severityNVD Advisory· Published Feb 9, 2011· Updated Apr 29, 2026
CVE-2011-0923
CVE-2011-0923
Description
The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory."
Affected products
1- cpe:2.3:a:hp:data_protector:*:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- www.vupen.com/english/advisories/2011/0308nvdVendor Advisory
- dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-hpnvd
- marc.infonvd
- securityreason.com/securityalert/8261nvd
- securityreason.com/securityalert/8323nvd
- securityreason.com/securityalert/8329nvd
- www.securityfocus.com/bid/46234nvd
- zerodayinitiative.com/advisories/ZDI-11-055/nvd
News mentions
0No linked articles in our index yet.