HPCmd Utility Risk Analysis

The HPCmd communication channel is based on the Windows named pipe (http://msdn.microsoft.com/en-us/library/aa365590(VS.85).aspx). Named pipe technology leverages the Windows security for Authentication and Authorization.

The HPCmd client is a pipe client (client process initiates the connection). The HPCmdService is a pipe server, and after each command invocation request from the HPCmd client, the HPCmd service creates ad-hoc an additional 3 pipe servers to stream command execution indication back to the client.