94 matches found
[security bulletin] HPSBGN03328 rev.1 - Network Virtualization for HP LoadRunner and Performance Center, Remote Information Disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04657310 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04657310 Version: 1 HPSBGN03328 rev....
Network Virtualization for HP LoadRunner and Performance Center information disclosure
No description provided...
HP Network Virtualization storedNtxFile Directory Traversal (CVE-2014-2625)
A directory traversal vulnerability exists in HP Network Virtualization software. The vulnerability is due to insufficient input validation of user parameters passed to "storedNtxFile" method. A remote, unauthenticated attacker can leverage this vulnerability to gain access to sensitive informati...
HP Network Virtualization toServerObject Directory Traversal (CVE-2014-2626)
A directory traversal vulnerability exists in HP Network Virtualization software. The vulnerability is due to insufficient input validation of user parameters passed to "toServerObject" method. A remote, unauthenticated attacker could exploit this vulnerability by sending crafted HTTP requests to...
[security bulletin] HPSBMU03073 rev.1 - HP Network Virtualization, Remote Execution of Code, Disclosure of Information
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04374202 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04374202 Version: 1 HPSBMU03073 rev....
HP Network Virtualization, code execution
No description provided...
CVE-2014-2625
Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 aka Shunra Network Virtualization allows remote attackers to read arbitrary files via crafted input, aka ZDI-CAN-2023...
CVE-2014-2626
Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 aka Shunra Network Virtualization allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024...
Directory traversal
Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 aka Shunra Network Virtualization allows remote attackers to read arbitrary files via crafted input, aka ZDI-CAN-2023...
Directory traversal
Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 aka Shunra Network Virtualization allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024...
CVE-2014-2625
Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 aka Shunra Network Virtualization allows remote attackers to read arbitrary files via crafted input, aka ZDI-CAN-2023...
CVE-2014-2626
Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 aka Shunra Network Virtualization allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024...
CVE-2014-2625
Affected product/Version: HP Network Virtualization 8.6 (Shunra Network Virtualization). Vulnerability: storedNtxFile directory traversal due to insufficient input validation, enabling a remote, unauthenticated attacker to read arbitrary files on the vulnerable system. Root cause: improper saniti...
CVE-2014-2626
CVE-2014-2626 affects HP Network Virtualization / Shunra Network Virtualization 8.6. The vulnerability is in the toServerObject function, caused by insufficient input validation that enables directory traversal. An unauthenticated remote attacker can craft HTTP requests to write arbitrary files (...