Lucene search
K

138 matches found

0day.today
0day.today
added 2014/10/28 12:0 a.m.74 views

HP Operations Agent Remote XSS iFrame Injection

Exploit for multiple platform in category web applications !/usr/bin/python Exploit Title: HP Operations Agent / HP Communications Broker Remote XSS iFrame Injection Date: 10/16/2014 Exploit Author: Matt Schmidt Syph0n Vendor Homepage: www.hp.com Version: HP Operations Manager/Operations Agent /...

4.3CVSS6.6AI score0.034EPSS
Exploits5
Exploit DB
Exploit DB
added 2014/10/27 12:0 a.m.80 views

HP Operations Agent - Cross-Site Scripting iFrame Injection

!/usr/bin/python Exploit Title: HP Operations Agent / HP Communications Broker Remote XSS iFrame Injection Date: 10/16/2014 Exploit Author: Matt Schmidt Syph0n Vendor Homepage: www.hp.com Version: HP Operations Manager/Operations Agent / OpenView Communications Broker 11.14 Tested on: Windows 7,...

4.3CVSS6.6AI score0.034EPSS
Exploits5
exploitpack
exploitpack
added 2014/10/27 12:0 a.m.55 views

HP Operations Agent - Cross-Site Scripting iFrame Injection

HP Operations Agent - Cross-Site Scripting iFrame Injection !/usr/bin/python Exploit Title: HP Operations Agent / HP Communications Broker Remote XSS iFrame Injection Date: 10/16/2014 Exploit Author: Matt Schmidt Syph0n Vendor Homepage: www.hp.com Version: HP Operations Manager/Operations Agent /...

4.3CVSS0.1AI score0.034EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2014/10/22 12:0 a.m.378 views

HP Operations Manager / Operations Agent < 11.13 XSS (HPSBMU03126)

According to its self-reported version, the version of the HP Operations Agent service running on the remote host is affected by a cross-site scripting vulnerability. Operations Agent is often an included component of Operations Manager. C Tenable Network Security, Inc. include"compat.inc"; if...

4.3CVSS5.4AI score0.034EPSS
Exploits5References2
NVD
NVD
added 2014/10/19 1:55 a.m.29 views

CVE-2014-2647

Cross-site scripting XSS vulnerability in HP Operations Agent in HP Operations Manager formerly OpenView Communications Broker before 11.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.6AI score0.034EPSS
Exploits5References2
Cvelist
Cvelist
added 2014/10/19 1:0 a.m.30 views

CVE-2014-2647

Cross-site scripting XSS vulnerability in HP Operations Agent in HP Operations Manager formerly OpenView Communications Broker before 11.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.6AI score0.034EPSS
Exploits5References2
securityvulns
securityvulns
added 2014/10/17 12:0 a.m.38 views

HP Operations Agent crossite scripting

No description provided...

4.3CVSS0.8AI score0.034EPSS
Exploits5References1Affected Software1
NVD
NVD
added 2014/08/12 5:1 a.m.36 views

CVE-2014-2630

Unspecified vulnerability in HP Operations Agent 11.00, when Glance is used, allows local users to gain privileges via unknown vectors...

4.4CVSS6.2AI score0.0708EPSS
Exploits9References8
Prion
Prion
added 2014/08/12 5:1 a.m.12 views

Code injection

Unspecified vulnerability in HP Operations Agent 11.00, when Glance is used, allows local users to gain privileges via unknown vectors...

4.4CVSS6.8AI score0.0708EPSS
Exploits9References8Affected Software1
Cvelist
Cvelist
added 2014/08/12 1:0 a.m.35 views

CVE-2014-2630

Unspecified vulnerability in HP Operations Agent 11.00, when Glance is used, allows local users to gain privileges via unknown vectors...

6.2AI score0.0708EPSS
Exploits9References8
CVE
CVE
added 2014/08/12 1:0 a.m.133 views

CVE-2014-2630

CVE-2014-2630 affects HP Glance/Performance Monitoring xglance-bin (HP Operations Agent 11.00). Vulnerable code path due to insecure RPATH (-L/lib64) used by SetUID/SetGID binaries, enabling local privilege escalation to root. Impact described as privilege escalation; fixed version HPSBMU03086 re...

4.4CVSS6.3AI score0.0708EPSS
Exploits9References8Affected Software1
securityvulns
securityvulns
added 2014/08/11 12:0 a.m.71 views

HP Operations Agent privilege escalation

Privilege escalation via Glance...

4.4CVSS3.1AI score0.0708EPSS
Exploits9References1Affected Software1
securityvulns
securityvulns
added 2014/08/11 12:0 a.m.53 views

[security bulletin] HPSBMU03086 rev.1 - HP Operations Agent running Glance, Local Elevation of Privilege

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04394554 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04394554 Version: 1 HPSBMU03086 rev....

4.4CVSS0.2AI score0.0708EPSS
Exploits9
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

HP Operations Agent Opcode coda.exe 0x8c Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

HP Operations Agent Opcode coda.exe 0x34 Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/09/27 12:0 a.m.119 views

HP OpenView Communication Broker Arbitrary File Deletion (HPSBMU02691)

According to its self-reported version, the version of the HP OpenView Communication Broker service running on the remote host has a vulnerability that could allow an unauthenticated attacker to delete arbitrary files on the system. Successful exploits will result in a denial of service condition...

6.4CVSS5.6AI score0.048EPSS
Exploits1References3
Exploit DB
Exploit DB
added 2013/09/10 12:0 a.m.32 views

HP SiteScope (Windows) - Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 /Apache-Coyote/ include...

10CVSS7AI score0.68895EPSS
Exploits10
0day.today
0day.today
added 2013/09/10 12:0 a.m.97 views

HP SiteScope Remote Code Execution Vulnerability

This Metasploit module exploits a code execution flaw in HP SiteScope. The vulnerability exists on the opcactivate.vbs script, which is reachable from the APIBSMIntegrationImpl AXIS service, and uses WScript.Shell.run to execute cmd.exe with user provided data. Note which the opcactivate.vbs...

10CVSS7.1AI score0.68895EPSS
Exploits10
Packet Storm
Packet Storm
added 2013/09/09 12:0 a.m.44 views

HP SiteScope Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 /Apache-Coyote/ include...

10CVSS0.68895EPSS
Exploits10
Metasploit
Metasploit
added 2013/09/04 8:57 p.m.24 views

HP SiteScope Remote Code Execution

This module exploits a code execution flaw in HP SiteScope. The vulnerability exists in the opcactivate.vbs script, which is reachable from the APIBSMIntegrationImpl AXIS service, and uses WScript.Shell.run to execute cmd.exe with user provided data. Note that the opcactivate.vbs component is...

10CVSS0.4AI score0.68895EPSS
Exploits10
Rows per page
Query Builder