Lucene search
SAINT CorporationSAINT:5DF2E8BB0ECF29725510E3173971EDE5HistoryJun 18, 2010 - 12:00 a.m.
HP Operations Manager hidden Tomcat account
2010-06-1800:00:00
SAINT Corporation
www.saintcorporation.com
42
0.906 High
EPSS
Percentile
98.5%
Added: 06/18/2010
CVE: CVE-2009-3843
BID: 37086
OSVDB: 60317
Background
HP Operations Manager is a consolidated event and performance management console that correlates infrastructure, network and end-user experience events across an IT infrastructure.
Problem
A hidden Apache Tomcat account allows remote attackers to use the org.apache.catalina.manager.HTMLManagerServlet class to upload arbitrary files, leading to arbitrary code execution.
Resolution
Apply the patch referenced in HPSBMA02478 SSRT090251.
References
<http://www.zerodayinitiative.com/advisories/ZDI-09-085/>
Limitations
Exploit works on HP Operations Manager A.08.10 on Windows Server 2003 and Windows Server 2008.
Platforms
Windows
Related
attackerkb
attackerkb
CVE-2009-3843
2009-11-24 00:00:00
securityvulns
securityvulns
ZDI-09-085: Hewlett-Packard Operations Manager Server Backdoor Account Code Execution Vulnerability
2009-11-23 00:00:00
[security bulletin] HPSBMA02478 SSRT090251 rev.1 - HP Operations Manager for Windows, Remote Unauthorized Access
2009-11-20 00:00:00
HP Operations Manager backdoor account
2009-11-23 00:00:00
cve
cve
CVE-2009-3843
2009-11-24 00:30:00
CVE-2009-4189
2009-12-03 17:30:00
seebug
seebug
HP Operations Manager 8.10 ćéšèŽŠć·æŒæŽ
2009-11-24 00:00:00
saint
saint
HP Operations Manager hidden Tomcat account
2010-06-18 00:00:00
HP Operations Manager hidden Tomcat account
2010-06-18 00:00:00
HP Operations Manager hidden Tomcat account
2010-06-18 00:00:00
zdi
zdi
packetstorm
packetstorm
Apache Tomcat Manager Application Deployer Upload and Execute
2010-02-19 00:00:00
Apache Tomcat Manager Code Execution
2014-02-01 00:00:00
prion
prion
Unrestricted file upload
2009-11-24 00:30:00
Unrestricted file upload
2009-12-03 17:30:00
checkpoint_advisories
checkpoint_advisories
zdt
zdt
Apache Tomcat Manager Code Execution Exploit
2014-02-04 00:00:00
openvas
openvas
Apache Tomcat Server Administration Default/Hardcoded Credentials
2015-04-10 00:00:00
kitploit
kitploit
Sn1per v5.0 - Automated Pentest Recon Scanner
2018-07-05 13:45:00
Sn1per v6.0 - Automated Pentest Framework For Offensive Security Experts
2018-11-24 12:43:00
Sn1per v7.0 - Automated Pentest Framework For Offensive Security Experts
2019-05-12 13:09:00