869 matches found
CVE-2009-4189
HP Operations Manager has a default password of OvWbusr1 for the ovwebusr account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against the /manager servlet in the Tomcat servlet container. NOTE: this...
Unrestricted file upload
HP Operations Manager has a default password of OvWbusr1 for the ovwebusr account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against the /manager servlet in the Tomcat servlet container. NOTE: this...
CVE-2009-4189
HP Operations Manager has a default password of OvWbusr1 for the ovwebusr account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against the /manager servlet in the Tomcat servlet container. NOTE: this...
CVE-2009-4189
CVE-2009-4189 : HP Operations Manager uses a default OvWebusr password for the ovwebusr account, enabling a remote attacker to trigger arbitrary code execution via the Tomcat manager servlet’s session with the manager role. Note that this CVE may overlap with CVE-2009-3099 and CVE-2009-3843. Expl...
Unrestricted file upload
HP Operations Manager 8.10 on Windows contains a "hidden account" in the XML file that specifies Tomcat users, which allows remote attackers to conduct unrestricted file upload attacks, and thereby execute arbitrary code, by using the org.apache.catalina.manager.HTMLManagerServlet class to make...
CVE-2009-3843
HP Operations Manager 8.10 on Windows contains a "hidden account" in the XML file that specifies Tomcat users, which allows remote attackers to conduct unrestricted file upload attacks, and thereby execute arbitrary code, by using the org.apache.catalina.manager.HTMLManagerServlet class to make...
CVE-2009-3843
HP Operations Manager 8.10 on Windows contains a "hidden account" in the XML file that specifies Tomcat users, which allows remote attackers to conduct unrestricted file upload attacks, and thereby execute arbitrary code, by using the org.apache.catalina.manager.HTMLManagerServlet class to make...
HP Operations Manager 8.10 后门账号漏洞
BUGTRAQ ID: 37086 CVE ID: CVE-2009-3843 HP Operations Manager是用于协调IT基础架构中网络、最终用户体验事件的综合事件和性能管理控制台。 HP Operations Manager的Tomcat用户XML文件中存在隐藏的账号,恶意用户可以使用这个账号访问org.apache.catalina.manager.HTMLManagerServlet类,而这个servlet允许远程用户通过POST请求向/manager/html/upload上传文件。如果攻击者上传了恶意内容,之后就可以在服务器上访问并以SYSTEM用户权限执行任意代...
CVE-2009-3843
CVE-2009-3843 : The HP Operations Manager 8.10 on Windows is reported to contain a hidden Tomcat user account in an XML file. This enables a remote attacker to perform an unrestricted file upload via /manager/html/upload and execute arbitrary code. Connected sources reference Tomcat manager uploa...
HP Operations Manager backdoor account
There is a hidden undocumented Tomcat account...
ZDI-09-085: Hewlett-Packard Operations Manager Server Backdoor Account Code Execution Vulnerability
ZDI-09-085: Hewlett-Packard Operations Manager Server Backdoor Account Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-085 November 20, 2009 -- CVE ID: CVE-2009-3843 -- Affected Vendors: Hewlett-Packard -- Affected Products: Hewlett-Packard OpenView Operations...
[security bulletin] HPSBMA02478 SSRT090251 rev.1 - HP Operations Manager for Windows, Remote Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01931960 Version: 1 HPSBMA02478 SSRT090251 rev.1 - HP Operations Manager for Windows, Remote Unauthorized Access NOTICE: The information in this Security Bulletin should be acted upon as soon as...
Hewlett-Packard Operations Manager Server Backdoor Account Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Operations Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists due to a hidden account present within the Tomcat users XML file. Using th...
Code injection
Unspecified vulnerability in HP OpenView Operations Manager 8.1 on Windows Server 2003 SP2 allows remote attackers to have an unknown impact, related to a "Remote exploit," as demonstrated by a certain module in VulnDisco Pack Professional 8.11, a different vulnerability than CVE-2007-3872. NOTE:...
CVE-2009-3099
Unspecified vulnerability in HP OpenView Operations Manager 8.1 on Windows Server 2003 SP2 allows remote attackers to have an unknown impact, related to a "Remote exploit," as demonstrated by a certain module in VulnDisco Pack Professional 8.11, a different vulnerability than CVE-2007-3872. NOTE:...
CVE-2009-3099
Technical details for CVE-2009-3099 are not publicly available in the provided documents; no affected products, vectors, or fixes are disclosed. Monitor for updates.
CVE-2009-3099
Unspecified vulnerability in HP OpenView Operations Manager 8.1 on Windows Server 2003 SP2 allows remote attackers to have an unknown impact, related to a "Remote exploit," as demonstrated by a certain module in VulnDisco Pack Professional 8.11, a different vulnerability than CVE-2007-3872. NOTE:...
HP Operations Manager - Default Manager 8.1 Account Remote Security
HP Operations Manager - Default Manager 8.1 Account Remote Security source: https://www.securityfocus.com/bid/36253/info HP Operations Manager is prone to a remote security vulnerability. Operations Manager 8.1 for Windows is vulnerable; other versions may also be vulnerable. NOTE: This issue may...
HP Operations Manager - Default Manager 8.1 Account Remote Security
source: https://www.securityfocus.com/bid/36253/info HP Operations Manager is prone to a remote security vulnerability. Operations Manager 8.1 for Windows is vulnerable; other versions may also be vulnerable. NOTE: This issue may be related to the issue documented in BID 37086 HP Operations Manag...
CVE-2009-1161
CVE-2009-1161 describes a directory traversal vulnerability in CiscoWorks Common Services (CWCS) 3.0.x–3.2.x on Windows when the TFTP service is enabled. An unauthenticated remote attacker could access arbitrary files via CWCS TFTP, affecting multiple Cisco products that rely on CWCS (e.g., Unifi...