Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 12:1 a.m.8 views

CVE-2009-4000

Directory traversal vulnerability in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to overwrite arbitrary files, and execute arbitrary code, via directory traversal sequences in the fileName parameter...

10CVSS7.6AI score0.19779EPSS
Exploits0References1
securityvulns
securityvulns
added 2010/01/21 12:0 a.m.52 views

Secunia Research: HP Power Manager "formExportDataLogs" Directory Traversal

====================================================================== Secunia Research 20/01/2009 - HP Power Manager "formExportDataLogs" Directory Traversal - ====================================================================== Table of Contents Affected...

10CVSS1.2AI score0.19779EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/01/21 12:0 a.m.296 views

HP Power Manager < 4.2.10

The installed version of HP Power Manager is less than 4.2.10, and as such has the following vulnerabilities : - Adequate bounds checking is not performed on the 'Login' parameter of the login page, which could lead to a buffer overflow. A remote, unauthenticated attacker could exploit this to...

10CVSS6.9AI score0.76706EPSS
Exploits20References8
CVE
CVE
added 2010/01/20 10:0 p.m.54 views

CVE-2009-4000

HP Power Manager vulnerable to a directory traversal issue in goform/formExportDataLogs (fileName parameter) that allows remote attackers to overwrite arbitrary files and potentially execute arbitrary code. Affected software: HP Power Manager versions before 4.2.10. Root cause: input validation e...

10CVSS7.3AI score0.19779EPSS
Exploits0References5Affected Software1
securityvulns
securityvulns
added 2010/01/20 12:0 a.m.60 views

[security bulletin] HPSBMA02485 SSRT090252 rev.1 - HP Power Manager, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01971741 Version: 1 HPSBMA02485 SSRT090252 rev.1 - HP Power Manager, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as soon as possible...

10CVSS0.6AI score0.71807EPSS
Exploits11
Rows per page
Query Builder