HP OpenView Performance Insight Server backdoor

Hidden undocumented user account is implemented in com.trinagy.security.XMLUserManager class...

HP OpenView Performance Insight Server 'doPost()' Remote Arbitrary Code Execution Vulnerability

HP OpenView Performance Insight Server is prone to a remote code-execution vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

HP Performance Insight Detection

This host is running the HP OpenView Performance Insight Web interface. OpenVAS Vulnerability Test $Id: gbhpperformanceinsightdetect.nasl 6125 2017-05-15 09:03:42Z teissa $ HP Performance Insight Detection Authors: Michael Meyer Copyright: Copyright c 2011 Greenbone Networks GmbH This program is...

HP OpenView Performance Insight Server 'doPost()' Remote Arbitrary Code Execution Vulnerability

HP OpenView Performance Insight Server is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will completely compromise affected computers. OpenVAS Vulnerability Test $Id:...

HP OpenView Performance Insight Detection (HTTP)

This host is running the HP OpenView Performance Insight Web interface. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-0276

HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitrary code via the doPost method in the com.trinagy.servlet.HelpManagerServlet class...

Authentication flaw

HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitrary code via the doPost method in the com.trinagy.servlet.HelpManagerServlet class...

CVE-2011-0276

HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitrary code via the doPost method in the com.trinagy.servlet.HelpManagerServlet class...

CVE-2011-0276

HP OpenView Performance Insight Server (OVPI) versions 5.2, 5.3, 5.31, 5.4, and 5.41 are affected by a remote code execution vulnerability due to a hidden account in the com.trinagy.security.XMLUserManager Java class. The vulnerability allows an attacker to trigger the doPost() method of com.trin...

HP OpenView Performance Insight Server Detection

The web interface for HP OpenView Performance Insight was detected on the remote host. This software helps assess the availability and performance of network services. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid51849; scriptversion"1.7"; scriptcvsdate"Date:...

HP OpenView Performance Insight Server Backdoor Account

Nessus was able to log into the remote HP OpenView Performance Insight system using a hidden account. The 'hch908v' user, hard-coded in the 'com.trinagy.security.XMLUserManager' class, is hidden and has administrative privileges. A remote attacker could exploit this by logging in as the hidden us...

HP OpenView Performance Insight Server Backdoor Account

Binary data 5754.prm...

HP OpenView Performance Insight Server Backdoor Account Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Performance Insight Server. Authentication is not required to exploit this vulnerability. The specific vulnerability is due to a hidden account present within the...

CVE-2011-0275

Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to cause a denial of service via unknown vectors...

Code injection

Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to cause a denial of service via unknown vectors...

CVE-2011-0275

HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 are affected by a remote denial-of-service vulnerability. The HP Security Bulletin HPSBMA02626 SSRT100301 rev.1 provides patches for Windows variants: DPWIN_00475 (DP 6.11), DPWIN_00489 (DP 6.10), and DPWIN_00488 (DP 6.00). CVSS 2.0 Base Scor...

CVE-2011-0275

Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to cause a denial of service via unknown vectors...

HP OpenView Storage Data Protector DoS

No description provided...

[security bulletin] HPSBMA02626 SSRT100301 rev.1 - HP OpenView Storage Data Protector, Remote Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02699143 Version: 1 HPSBMA02626 SSRT100301 rev.1 - HP OpenView Storage Data Protector, Remote Denial of Service DoS NOTICE: The information in this Security Bulletin should be acted upon as soon ...

HP (OpenView Storage) Data Protector Manager DoS Vulnerability

HP OpenView Storage Data Protector Manager is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only C...