← back
CVE-2014-5160

CVE-2014-5160

EPSS 34.8%
Multiple directory traversal vulnerabilities in crs.exe in the Cell Request Service in HP Data Protector allow remote attackers to create arbitrary files via an opcode-1091 request, or create or delete arbitrary files via an opcode-305 request. NOTE: the vendor reportedly asserts that this behavior is "by design.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://zerodayinitiative.com/advisories/ZDI-14-262/http://zerodayinitiative.com/advisories/ZDI-14-263/