First published: Thu May 14 2009(Updated: )
Unspecified vulnerability in the dpwinsup module (dpwinsup.dll) for dpwingad (dpwingad.exe) in HP Data Protector Express and Express SSE 3.x before build 47065, and Express and Express SSE 4.x before build 46537, allows remote attackers to cause a denial of service (application crash) or read portions of memory via one or more crafted packets.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Windows | ||
Novell NetWare | ||
Red Hat Linux | ||
SUSE Linux | ||
HP Data Protector Express | =3.5-sp1 | |
HP Data Protector Express | =3.5-sp2 | |
HP Data Protector Express | =3.5-sp2 | |
HP Data Protector Express | =4.0-sp1 | |
HP Data Protector Express | =4.0-sp1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2009-0714 is categorized as a denial of service vulnerability, which may lead to application crashes.
To fix CVE-2009-0714, users should upgrade to HP Data Protector Express version 3.5 build 47065 or higher, or version 4.x build 46537 or higher.
CVE-2009-0714 affects HP Data Protector Express versions prior to the specified builds, especially in the dpwinsup module.
Yes, CVE-2009-0714 can be exploited by remote attackers to cause a denial of service.
The impact of CVE-2009-0714 on users is the potential for application crashes and disruption of services within the affected HP Data Protector Express applications.