ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-100 : HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-100 June 21, 2012 - -- CVE ID: CVE-2012-0127 - -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C - -- Affected...

[security bulletin] HPSBMU02756 SSRT100596 rev.1 - HP Performance Manager Running on HP-UX, Linux, Solaris and Windows, Remote Execution of Arbitrary Code, Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03255321 Version: 1 HPSBMU02756 SSRT100596 rev.1 - HP Performance Manager Running on HP-UX, Linux, Solaris and Windows, Remote Execution of Arbitrary Code, Denial of Service DoS NOTICE: The...

DSquare Exploit Pack: D2SEC_HPOVPM

Name| d2sechpovpm ---|--- CVE| CVE-2012-0127 Exploit Pack| D2ExploitPack Description| HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability Notes|...

CVE-2012-0127

HP OpenView Performance Manager PMParamHandler Remote Code Execution (CVE-2012-0127). Affects HP Performance Manager 9.00; vulnerability exists in PMParamHandler served via Apache Tomcat on port 8081. Insufficient validation of a filename and embedded null byte truncation allow remote, unauthenti...