CVE-2009-0714

Unspecified vulnerability in the dpwinsup module (dpwinsup.dll) for dpwingad (dpwingad.exe) in HP Data Protector Express and Express SSE 3.x before build 47065, and Express and Express SSE 4.x before build 46537, allows remote attackers to cause a denial of service (application crash) or read portions of memory via one or more crafted packets.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
VendorProductVersion
hpdata_protector_express
3.5:sp1
hpdata_protector_express
3.5:sp2
hpdata_protector_express
3.5:sp2
hpdata_protector_express
4.0:sp1
hpdata_protector_express
4.0:sp1
𝑥
= Vulnerable software versions
References
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543
http://ivizsecurity.com/security-advisory-iviz-sr-09002.html
http://secunia.com/advisories/35084
http://www.securityfocus.com/bid/34955
http://www.securitytracker.com/id?1022220
http://www.vupen.com/english/advisories/2009/1309
https://www.exploit-db.com/exploits/9006
https://www.exploit-db.com/exploits/9007
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543
http://ivizsecurity.com/security-advisory-iviz-sr-09002.html
http://secunia.com/advisories/35084
http://www.securityfocus.com/bid/34955
http://www.securitytracker.com/id?1022220
http://www.vupen.com/english/advisories/2009/1309
https://www.exploit-db.com/exploits/9006
https://www.exploit-db.com/exploits/9007