Wednesday April 27, 2016

Critical Flaws In HP Data Protector Open Servers To Remote Attacks

You would think with a name like "HP Data Protector," your automated backup and recovery software would be safe from stuff like remote code execution. The good news is that there is a patch out now that address all six vulnerabilities.

Hewlett Packard has released critical security updates for its HP Data Protector software, which fix vulnerabilities that could allow remote code execution or unauthorized disclosure of information. HP Data Protector software is automated backup and recovery software for single-server to enterprise environments, and can be set up on Windows, Unix, and Linux operating systems. There are six vulnerabilities in all, with CVE-2016-2004 through CVE-2016-2007 all being considered critical.