2198 matches found
CVE-2010-3988
HP Insight Control Virtual Machine Management for Windows prior to v6.2 contains a Denial of Service vulnerability (CVE-2010-3988) that can be triggered remotely, as noted in HP security bulletin and CVE records. The vulnerability affects HP Insight Control VM Management before 6.2 and was addres...
CVE-2010-3991
Cross-site scripting XSS vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2010-4023
CVE-2010-4023 affects HP Insight Control Power Management for Windows (before version 6.2). The vulnerability is a remote Cross-Site Scripting (XSS) issue that could allow an attacker to inject arbitrary web script or HTML via unspecified vectors. HP’s Security Bulletin HPSBMA02603 rev.1 states t...
CVE-2010-4024
Cross-site request forgery CSRF vulnerability in HP Insight Control Power Management before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
HP Systems Insight Manager Arbitrary File Download Vulnerability
HP Systems Insight Manager is prone to a vulnerability that lets attackers download arbitrary files. Exploiting this issue will allow an attacker to view arbitrary files within the context of the application. Information harvested may aid in launching further attacks. The issue affects HP Systems...
HP Systems Insight Manager Arbitrary File Download Vulnerability (HPSBMA02590) - Active Check
HP Systems Insight Manager is prone to a vulnerability that lets attackers download arbitrary files. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
HP Systems Insight Manager logfile Parameter Arbitrary File Download
HP Systems Insight Manager is affected by an arbitrary file download vulnerability that can be leveraged by a remote attacker to download files of their choosing. If an attacker supplies a specially crafted HEAD request to the 'logfile' variable in 'switchFWInstallStatus.jsp', an arbitrary file c...
HP Systems Insight Manager multiple security vulnerabilities
Directory traversal, crossite scripting...
[security bulletin] HPSBMA02592 SSRT100300 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows Running Adobe Flash, Remote Execution of Arbitrary Code, Denial of Service (DoS), Unauthorized Modification
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02549485 Version: 1 HPSBMA02592 SSRT100300 rev.1 - HP Systems Insight Manager SIM for HP-UX, Linux, and Windows Running Adobe Flash, Remote Execution of Arbitrary Code, Denial of Service DoS,...
[security bulletin] HPSBMA02591 SSRT100299 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS), Privilege Escalation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02549477 Version: 1 HPSBMA02591 SSRT100299 rev.1 - HP Systems Insight Manager SIM for HP-UX, Linux, and Windows, Remote Cross Site Request Forgery CSRF, Cross Site Scripting XSS, Privilege...
[security bulletin] HPSBMA02590 SSRT100182 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Arbitrary File Download
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02548231 Version: 1 HPSBMA02590 SSRT100182 rev.1 - HP Systems Insight Manager SIM for HP-UX, Linux, and Windows, Remote Arbitrary File Download NOTICE: The information in this Security Bulletin...
CVE-2010-3290
Unspecified vulnerability in HP Systems Insight Manager SIM before 6.2 allows remote authenticated users to gain privileges via unknown vectors...
CVE-2010-3289
Cross-site scripting XSS vulnerability in HP Systems Insight Manager SIM before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2010-3288
Cross-site request forgery CSRF vulnerability in HP Systems Insight Manager SIM before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in HP Systems Insight Manager SIM before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Code injection
Unspecified vulnerability in HP Systems Insight Manager SIM before 6.2 allows remote authenticated users to gain privileges via unknown vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in HP Systems Insight Manager SIM before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2010-3289
Cross-site scripting XSS vulnerability in HP Systems Insight Manager SIM before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2010-3289
HP Systems Insight Manager (SIM) prior to version 6.2 is affected by CVE-2010-3289, a remote XSS vulnerability that could allow an attacker to inject arbitrary web script or HTML via unspecified vectors. The HP security bulletin summarizes the impact as XSS with no confidentiality/availability co...
CVE-2010-3290
HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows prior to version 6.2 contains a vulnerability (CVE-2010-3290) that allows remote authenticated users to gain privileges via unknown vectors. The HP security bulletin confirms privilege escalation as the impact and notes that HP SIM v6...