Unrated severityNVD Advisory· Published Jan 4, 2014· Updated Apr 29, 2026

CVE-2013-2347

Description

The Backup Client Service (OmniInet.exe) in HP Storage Data Protector 6.2X allows remote attackers to execute arbitrary commands or cause a denial of service via a crafted EXEC_BAR packet to TCP port 5555, aka ZDI-CAN-1885.

Affected products

HP/Storage Data Protector7 versions
cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2003:*:*+ 6 more
- cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2003:*:*
- cpe:2.3:a:hp:storage_data_protector:6.20:-:*:*:*:windows_server_2008:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:hp-ux:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:redhat_enterprise_linux:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:solaris:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:windows_server_2003:*:*
- cpe:2.3:a:hp:storage_data_protector:6.21:-:*:*:*:windows_server_2008:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/nvdVendor Advisory
www.zerodayinitiative.com/advisories/ZDI-14-008/nvdThird Party Advisory
ddilabs.blogspot.com/2014/02/fun-with-hp-data-protector-execbar.htmlnvdPermissions Required
www.exploit-db.com/exploits/32164nvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.061
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000