3 matches found
HP Systems Insight Manager logfile Parameter Arbitrary File Download
HP Systems Insight Manager is affected by an arbitrary file download vulnerability that can be leveraged by a remote attacker to download files of their choosing. If an attacker supplies a specially crafted HEAD request to the 'logfile' variable in 'switchFWInstallStatus.jsp', an arbitrary file c...
[security bulletin] HPSBMA02590 SSRT100182 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Arbitrary File Download
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02548231 Version: 1 HPSBMA02590 SSRT100182 rev.1 - HP Systems Insight Manager SIM for HP-UX, Linux, and Windows, Remote Arbitrary File Download NOTICE: The information in this Security Bulletin...
CVE-2010-3286
HP Systems Insight Manager (SIM) 6.0 and 6.1 contain an unspecified vulnerability described as CVE-2010-3286 that allows remote attackers to read arbitrary files. Public sources prime affected products as HP SIM on HP-UX, Linux, and Windows, with hotfixes released in 2010 to resolve the issue (ho...