HP Smart Storage Administrator command injection

2017-02-16T00:00:00
ID SAINT:7EE5FAF64B3788FC8DD33B0E404D6A18
Type saint
Reporter SAINT Corporation
Modified 2017-02-16T00:00:00

Description

Added: 02/16/2017
CVE: CVE-2016-8523
BID: 95868

Background

HP Smart Storage Administrator (HP SSA) is a web-based application that helps an administrator configure, manage, diagnose, and monitor HP ProLiant Smart Array Controllers and other storage devices such as host bus adapters (HBAs) and HP Storage controllers.

Problem

A command injection vulnerability in HP Smart Storage Administrator allows remote attackers to execute arbitrary commands by sending a specially crafted query string in the URL of a GET request.

Resolution

Update to HP Smart Storage Administrator v2.60.18.0 or later.

References

<http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05382349>

Limitations

Anonymous access must be enabled.

Exploit requires the IO::Socket::SSL Perl module to be installed on the SAINTexploit host.

Platforms

Linux