Lucene search
HistoryJan 20, 2010 - 10:30 p.m.
CVE-2009-4000
vulnerability
directory traversal
hp power manager
remote attackers
arbitrary files
code execution
cve-2009-4000
nvd
7.2 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.059 Low
EPSS
Percentile
93.4%
Directory traversal vulnerability in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to overwrite arbitrary files, and execute arbitrary code, via directory traversal sequences in the fileName parameter.
Related
securityvulns
securityvulns
Secunia Research: HP Power Manager "formExportDataLogs" Directory Traversal
2010-01-21 00:00:00
[security bulletin] HPSBMA02485 SSRT090252 rev.1 - HP Power Manager, Remote Execution of Arbitrary Code
2010-01-20 00:00:00
HP Power Manager code execution
2010-01-21 00:00:00
prion
prion
Directory traversal
2010-01-20 22:30:00
checkpoint_advisories
checkpoint_advisories
HP Power Manager formExportDataLogs Directory Traversal (CVE-2009-4000)
2010-05-26 00:00:00
openvas
openvas
HP Power Manager Multiple Remote Code Execution Vulnerabilities
2010-01-20 00:00:00
HP Power Manager Multiple Remote Code Execution Vulnerabilities
2010-01-20 00:00:00
nessus
nessus
HP Power Manager < 4.2.10
2010-01-21 00:00:00
7.2 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.059 Low
EPSS
Percentile
93.4%
Related for CVE-2009-4000