HP SiteScope Remote Code Execution
This module exploits a code execution flaw in HP SiteScope. The vulnerability exists in the opcactivate.vbs script, which is reachable from the APIBSMIntegrationImpl AXIS service, and uses WScript.Shell.run to execute cmd.exe with user provided data. Note that the opcactivate.vbs component is...