it has announced a vulnerability in HP Data Protector which could allow malicious local users to cause a denial of service. The vulnerability is caused by a reference to a null pointer in OmniInet.exe and could allow the detention of the service via a specially crafted packet to TCP port.

The vulnerability is confirmed in version A.06.11.0000 and published a proof of concept. At the moment there is no update available so it is recommended to restrict access only to trusted users and from secure sites.