138 matches found
HP Operations Agent Remote XSS iFrame Injection
Exploit for multiple platform in category web applications !/usr/bin/python Exploit Title: HP Operations Agent / HP Communications Broker Remote XSS iFrame Injection Date: 10/16/2014 Exploit Author: Matt Schmidt Syph0n Vendor Homepage: www.hp.com Version: HP Operations Manager/Operations Agent /...
HP Operations Agent - Cross-Site Scripting iFrame Injection
!/usr/bin/python Exploit Title: HP Operations Agent / HP Communications Broker Remote XSS iFrame Injection Date: 10/16/2014 Exploit Author: Matt Schmidt Syph0n Vendor Homepage: www.hp.com Version: HP Operations Manager/Operations Agent / OpenView Communications Broker 11.14 Tested on: Windows 7,...
HP Operations Agent - Cross-Site Scripting iFrame Injection
HP Operations Agent - Cross-Site Scripting iFrame Injection !/usr/bin/python Exploit Title: HP Operations Agent / HP Communications Broker Remote XSS iFrame Injection Date: 10/16/2014 Exploit Author: Matt Schmidt Syph0n Vendor Homepage: www.hp.com Version: HP Operations Manager/Operations Agent /...
HP Operations Manager / Operations Agent < 11.13 XSS (HPSBMU03126)
According to its self-reported version, the version of the HP Operations Agent service running on the remote host is affected by a cross-site scripting vulnerability. Operations Agent is often an included component of Operations Manager. C Tenable Network Security, Inc. include"compat.inc"; if...
CVE-2014-2647
Cross-site scripting XSS vulnerability in HP Operations Agent in HP Operations Manager formerly OpenView Communications Broker before 11.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2014-2647
Cross-site scripting XSS vulnerability in HP Operations Agent in HP Operations Manager formerly OpenView Communications Broker before 11.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
HP Operations Agent crossite scripting
No description provided...
CVE-2014-2630
Unspecified vulnerability in HP Operations Agent 11.00, when Glance is used, allows local users to gain privileges via unknown vectors...
Code injection
Unspecified vulnerability in HP Operations Agent 11.00, when Glance is used, allows local users to gain privileges via unknown vectors...
CVE-2014-2630
Unspecified vulnerability in HP Operations Agent 11.00, when Glance is used, allows local users to gain privileges via unknown vectors...
CVE-2014-2630
CVE-2014-2630 affects HP Glance/Performance Monitoring xglance-bin (HP Operations Agent 11.00). Vulnerable code path due to insecure RPATH (-L/lib64) used by SetUID/SetGID binaries, enabling local privilege escalation to root. Impact described as privilege escalation; fixed version HPSBMU03086 re...
HP Operations Agent privilege escalation
Privilege escalation via Glance...
[security bulletin] HPSBMU03086 rev.1 - HP Operations Agent running Glance, Local Elevation of Privilege
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04394554 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04394554 Version: 1 HPSBMU03086 rev....
HP Operations Agent Opcode coda.exe 0x8c Buffer Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...
HP Operations Agent Opcode coda.exe 0x34 Buffer Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...
HP OpenView Communication Broker Arbitrary File Deletion (HPSBMU02691)
According to its self-reported version, the version of the HP OpenView Communication Broker service running on the remote host has a vulnerability that could allow an unauthenticated attacker to delete arbitrary files on the system. Successful exploits will result in a denial of service condition...
HP SiteScope (Windows) - Remote Code Execution (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 /Apache-Coyote/ include...
HP SiteScope Remote Code Execution Vulnerability
This Metasploit module exploits a code execution flaw in HP SiteScope. The vulnerability exists on the opcactivate.vbs script, which is reachable from the APIBSMIntegrationImpl AXIS service, and uses WScript.Shell.run to execute cmd.exe with user provided data. Note which the opcactivate.vbs...
HP SiteScope Remote Code Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 /Apache-Coyote/ include...
HP SiteScope Remote Code Execution
This module exploits a code execution flaw in HP SiteScope. The vulnerability exists in the opcactivate.vbs script, which is reachable from the APIBSMIntegrationImpl AXIS service, and uses WScript.Shell.run to execute cmd.exe with user provided data. Note that the opcactivate.vbs component is...