Recently, BroadBITS, a leading cybersecurity company, conducted a penetration test for a customer and what we found was a major cause for concern. The remote HP Data Protector client or server service was found to be affected by a command execution vulnerability, which could allow a malicious user to execute arbitrary shell commands with system/root privileges.
Through the use of a publicly available exploit, Broadbits was able to add a user to the HP Data Protector client. This gave us complete access to the server, allowing us to dump the credentials of all users in memory. To our surprise, we found that the user “sqlservice” was a domain administrator, giving us full access to the Domain Controller and all the servers within the domain network.
This vulnerability in HP Data Protector is a serious issue that needs to be addressed by organizations that use the software. It is essential that companies take proactive measures to protect their systems from these types of vulnerabilities, as they can have devastating consequences. A security breach can lead to a loss of sensitive information, data theft, and even financial losses.
At BroadBITS, we strive to ensure the security of our clients’ systems and we are always keeping a lookout for new vulnerabilities and exploits. Our team of experts has the skills and expertise to identify and remediate security threats, and we are dedicated to providing our clients with the best possible protection.
If you want to stay informed about the latest security threats and how to protect your systems, be sure to visit our website and read our blog articles. Our team is always working hard to provide our readers with the latest information on cybersecurity.