关键漏洞信息 EDB-ID: 35961 CVE: 2014-2623 Author: Jutttikhorn Khamchaiyaphum Type: Remote Platform: HP-UX Date: 2015-01-30 Vulnerable App: HP Data Protector 8.x 漏洞描述 Exploit Title: HP Data Protector 8.x Remote command execution Vendor Homepage: https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04373818 Software Link: http://www8.hp.com/th/en/software-solutions/data-protector-backup-recovery-software/ Version: 8.x Tested on: IA64 HP Server Rx3600 Usage: Exploit Highlights Language: Python Functionality: Executes arbitrary commands remotely on the target server by crafting a malicious packet and sending it to the target. Key Steps: - Connects to the target server on the specified port. - Calculates the offset for the command based on the command length. - Constructs a packet with the command embedded. - Sends the packet to the target. - Reads and prints the response from the server.