HP Data Protector Media Operations 6.11 (Multiple Modules) – Null Pointer Dereference Denial of Service

• Exploit Database
• 19 阅读

• 作者： d0lc3
  日期： 2010-09-11
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/14974/

• #Exploit Title: HP Data Protector Media Operations 6.11 Multiple NULL Pointer Dereference Local DoS (0day)
   
  #Date:11/09/2010 
  
  #Author:d0lc3 d0lc3x[at]gmail[dom]com 
  
  #Author Link: http://elotrolad0.blogspot.com/
  
  #Software Link:(trial) https://h10078.www1.hp.com/cda/hpdc/navigation.do?
  action=downloadBinStart&caid=44914&cp=54_4000_100&zn=bto&filename=B7
  129AAE
  
  #Version: 6.11 
  
  #Tested on: win32 XP SP3 (spa)
  
  #Summary:
  "DBServer.exe" and "DBTools.exe" are prone to local denial of service 
  causing a NULL pointer Dereference. 
  Correct manipulation of .4DC file format should to allow attackers exploit this
  issue to crash application, denying service to legitimate users. Due to the
  nature of this issue, attackers may be able to execute local arbitrary
  code, but this has not been confirmed.
  
  More details on author blog:
  
  http://elotrolad0.blogspot.com/2010/09/hp-data-protector-media-operations-611.html
  
  by r0i
  
  PoC: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/14974.rar (HP_Data_Protector_Poc.rar)