Search...

HP Diagnostics Server Detection

2013-02-05T00:00:00

ID HP_DIAGNOSTICS_SERVER_DETECT.NASL
Type nessus
Reporter This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
Modified 2021-02-02T00:00:00

Description

The remote host is running HP (Formerly Mercury) Diagnostics Server, an application performance monitoring solution.

                                        
                                            #
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(64473);
  script_version("1.3");
  script_cvs_date("Date: 2019/11/25");

  script_name(english:"HP Diagnostics Server Detection");
  script_summary(english:"Detects HP Diagnostics Server web interface");

  script_set_attribute(
    attribute:"synopsis",
    value:
"The remote host is running an application performance monitoring
server."
  );
  script_set_attribute(
    attribute:"description",
    value:
"The remote host is running HP (Formerly Mercury) Diagnostics Server, an
application performance monitoring solution."
  );
  #http://www8.hp.com/us/en/software-solutions/software.html?compURI=1175730
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1e81dc55");
  script_set_attribute(attribute:"solution", value:"n/a");
  script_set_attribute(attribute:"risk_factor", value:"None");

  script_set_attribute(attribute:"plugin_publication_date", value:"2013/02/05");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:hp:diagnostics_server");
  script_set_attribute(attribute:"asset_inventory", value:"True");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("http_version.nasl");
  script_exclude_keys("Settings/disable_cgi_scanning");
  script_require_ports("Services/www", 2006);

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("http.inc");
include("webapp_func.inc");

port = get_http_port(default:2006);

appname = "HP Diagnostics Server";
kb_appname = "hp_diagnostics_server";

res = http_send_recv3(
  method:'GET',
  item:'/',
  port:port,
  exit_on_fail:TRUE
);
if (
  "&lt;title&gt;HP Diagnostics - Main Menu&lt;/title&gt;" &gt;&lt; res[2] && 
  "Hewlett-Packard" &gt;&lt; res[2]
)
{
  version = UNKNOWN_VER;
  item = eregmatch(pattern:'class="diag"&gt;Diagnostics&lt;p&gt;Server[ ]*([^&lt;]+)', 
                   string:res[2]);  
  if (!isnull(item[1])) version = item[1];
    
  # Register install
  installs = add_install(
    installs:installs,
    ver:version,
    dir:'/',
    appname:kb_appname,
    port:port,
    cpe: "cpe:/a:hp:diagnostics_server"
  );
}

if (isnull(installs)) audit(AUDIT_WEB_APP_NOT_INST, appname, port);

# Report findings.
if (report_verbosity &gt; 0)
{
  report = get_install_report(
    port         : port,
    installs     : installs,
    display_name : appname,
    item         : '/' 
  );
  security_note(port:port, extra:report);
}
else security_note(port);

JSON Vulners Source

Initial Source

{"id": "HP_DIAGNOSTICS_SERVER_DETECT.NASL", "bulletinFamily": "scanner", "title": "HP Diagnostics Server Detection", "description": "The remote host is running HP (Formerly Mercury) Diagnostics Server, an\napplication performance monitoring solution.", "published": "2013-02-05T00:00:00", "modified": "2021-02-02T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.tenable.com/plugins/nessus/64473", "reporter": "This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?1e81dc55"], "cvelist": [], "type": "nessus", "lastseen": "2021-02-01T03:29:46", "edition": 22, "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["HP_DIAGNOSTICS_SERVER_DEFAULT_CREDS.NASL"]}], "modified": "2021-02-01T03:29:46", "rev": 2}, "score": {"value": -0.2, "vector": "NONE", "modified": "2021-02-01T03:29:46", "rev": 2}, "vulnersScore": -0.2}, "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(64473);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2019/11/25\");\n\n script_name(english:\"HP Diagnostics Server Detection\");\n script_summary(english:\"Detects HP Diagnostics Server web interface\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote host is running an application performance monitoring\nserver.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The remote host is running HP (Formerly Mercury) Diagnostics Server, an\napplication performance monitoring solution.\"\n );\n #http://www8.hp.com/us/en/software-solutions/software.html?compURI=1175730\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?1e81dc55\");\n script_set_attribute(attribute:\"solution\", value:\"n/a\");\n script_set_attribute(attribute:\"risk_factor\", value:\"None\");\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/02/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:hp:diagnostics_server\");\n script_set_attribute(attribute:\"asset_inventory\", value:\"True\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"http_version.nasl\");\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_ports(\"Services/www\", 2006);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:2006);\n\nappname = \"HP Diagnostics Server\";\nkb_appname = \"hp_diagnostics_server\";\n\nres = http_send_recv3(\n method:'GET',\n item:'/',\n port:port,\n exit_on_fail:TRUE\n);\nif (\n \"<title>HP Diagnostics - Main Menu</title>\" >< res[2] && \n \"Hewlett-Packard\" >< res[2]\n)\n{\n version = UNKNOWN_VER;\n item = eregmatch(pattern:'class=\"diag\">Diagnostics<p>Server[ ]*([^<]+)', \n string:res[2]); \n if (!isnull(item[1])) version = item[1];\n \n # Register install\n installs = add_install(\n installs:installs,\n ver:version,\n dir:'/',\n appname:kb_appname,\n port:port,\n cpe: \"cpe:/a:hp:diagnostics_server\"\n );\n}\n\nif (isnull(installs)) audit(AUDIT_WEB_APP_NOT_INST, appname, port);\n\n# Report findings.\nif (report_verbosity > 0)\n{\n report = get_install_report(\n port : port,\n installs : installs,\n display_name : appname,\n item : '/' \n );\n security_note(port:port, extra:report);\n}\nelse security_note(port);\n", "naslFamily": "CGI abuses", "pluginID": "64473", "cpe": ["cpe:/a:hp:diagnostics_server"], "scheme": null}

{"nessus": [{"lastseen": "2021-01-20T11:31:52", "description": "Nessus was able to login to the HP Diagnostics Server web interface\nusing default, known credentials.", "edition": 23, "published": "2013-02-05T00:00:00", "title": "HP Diagnostics Server Default Credentials", "type": "nessus", "bulletinFamily": "scanner", "cvelist": [], "modified": "2013-02-05T00:00:00", "cpe": ["cpe:/a:hp:diagnostics_server"], "id": "HP_DIAGNOSTICS_SERVER_DEFAULT_CREDS.NASL", "href": "https://www.tenable.com/plugins/nessus/64474", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(64474);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\n\n script_name(english:\"HP Diagnostics Server Default Credentials\");\n script_summary(english:\"Tries to login using default credentials\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote host is running a web application with default login\ncredentials.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"Nessus was able to login to the HP Diagnostics Server web interface\nusing default, known credentials.\"\n );\n # ftp://ftp.itrc.hp.com/applications/HPSoftware/ONLINE_HELP/Diagnostic9.20_Users.pdf\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?484d615c\");\n script_set_attribute(attribute:\"solution\", value:\"Change the default password for built-in accounts.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:ND/RC:ND\");\n\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/02/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:hp:diagnostics_server\");\n script_set_attribute(attribute:\"default_account\", value:\"true\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.\");\n\n script_dependencies(\"hp_diagnostics_server_detect.nasl\");\n script_exclude_keys(\"global_settings/supplied_logins_only\");\n script_require_ports(\"Services/www\", 2006);\n script_require_keys(\"www/hp_diagnostics_server\");\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:2006);\n\ninstall = get_install_from_kb(appname:\"hp_diagnostics_server\", port:port, exit_on_fail:TRUE);\n\nif (supplied_logins_only) audit(AUDIT_SUPPLIED_LOGINS_ONLY);\n\ndir = install['dir'];\nversion = install['ver'];\nlocation = build_url(qs:dir + '/', port:port);\n\n\nres = http_send_recv3(\n method:'GET',\n item:dir + '/maintenance/',\n port:port,\n username:'admin',\n password:'admin',\n exit_on_fail:TRUE\n);\n\nif (\n \"Built-In User Management\" >< res[2] &&\n \"Configuration\" >< res[2] &&\n \"License Management\" >< res[2] &&\n \"Access denied\" >!< res[2]\n)\n{\n if (report_verbosity > 0)\n {\n report = '\\nNessus was able to gain access using the following information :\\n' +\n '\\n URL : ' + location +\n '\\n User : admin' +\n '\\n Password : admin\\n';\n security_hole(port:port, extra:report);\n }\n else security_hole(port);\n exit(0);\n}\nelse audit(AUDIT_WEB_APP_NOT_AFFECTED, \"HP Diagnostics Server\", location);\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}]}