CVE-2012-4361

lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the second parameter...

Code injection

lhn/public/network/ping in HP SAN/iQ 9.5 on the HP Virtual SAN Appliance allows remote authenticated users to execute arbitrary commands via shell metacharacters in the 1 first, 2 third, or 3 fourth parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4361...

CVE-2012-4361

CVE-2012-4361 concerns HP SAN/iQ’s Virtual SAN Appliance, where the component at lhn/public/network/ping allows remote authenticated users to execute arbitrary shell commands by injecting metacharacters in the second parameter. The vulnerability affects HP SAN/iQ versions up to and including 9.4/...

HP StorageWorks P4000 Virtual SAN Appliance Command Execution

This module exploits a vulnerability found in HP's StorageWorks P4000 VSA on versions prior to 9.5. By using a default account credential, it is possible to inject arbitrary commands as part of a ping request via port 13838. This module requires Metasploit: https://metasploit.com/download Current...

CVE-2012-4361

creationtimestamp| type| source ---|---|--- 2012-02-17 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18893 2012-05-21 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18901 2018-05-29 15:50:33+00:00| seen|...