2 matches found
[security bulletin] HPSBMU02933 rev.2 - HP SiteScope, issueSiebelCmd and loadFileContents SOAP Requests, Remote Code Execution, Arbitrary File download, Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03969435 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03969435 Version: 2 HPSBMU02933 rev....
CVE-2013-6207
HP SiteScope SOAP loadFileContents vulnerability (CVE-2013-6207) affects SiteScope 10.1x, 11.1x, 11.21. The flaw in handling SOAP requests allows remote, unauthenticated attackers to trigger remote code execution, arbitrary file download, or DoS. ZDI notes exploitation via SOAP endpoints without ...