CVE-2009-0714

EUVD-2009-0714
Unspecified vulnerability in the dpwinsup module (dpwinsup.dll) for dpwingad (dpwingad.exe) in HP Data Protector Express and Express SSE 3.x before build 47065, and Express and Express SSE 4.x before build 46537, allows remote attackers to cause a denial of service (application crash) or read portions of memory via one or more crafted packets.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
Affected Products (NVD)
VendorProductVersion
hpdata_protector_express
3.5:sp1
hpdata_protector_express
3.5:sp2
hpdata_protector_express
3.5:sp2
hpdata_protector_express
4.0:sp1
hpdata_protector_express
4.0:sp1
𝑥
= Vulnerable software versions
References
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543
http://ivizsecurity.com/security-advisory-iviz-sr-09002.html
http://secunia.com/advisories/35084
http://www.securityfocus.com/bid/34955
http://www.securitytracker.com/id?1022220
http://www.vupen.com/english/advisories/2009/1309
https://www.exploit-db.com/exploits/9006
https://www.exploit-db.com/exploits/9007
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01697543
http://ivizsecurity.com/security-advisory-iviz-sr-09002.html
http://secunia.com/advisories/35084
http://www.securityfocus.com/bid/34955
http://www.securitytracker.com/id?1022220
http://www.vupen.com/english/advisories/2009/1309
https://www.exploit-db.com/exploits/9006
https://www.exploit-db.com/exploits/9007