Number: AV16-068
Date: 28 April 2016
Purpose
The purpose of this advisory is to bring attention to HP security bulletin.
Assessment
HP released multiple updates to address vulnerabilities in HP Data Protector which could allow the remote execution of code or the unauthorized disclosure of information.
Affected Versions:
- HP Data Protector 7.x before 7.03_108
- HP Data Protector 8.x before 8.15
- HP Data Protector 9.x before 9.06
CVE Reference: CVE-2016-2004, CVE-2016-2005, CVE-2016-2006, CVE-2016-2007, CVE-2015-2808, CVE-2016-2008
Suggested Action
CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.
References:
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05085988