2 matches found
[security bulletin] HPSBGN03308 rev.1 - HP TippingPoint Security Management System (SMS) and TippingPoint Virtual Security Management System (vSMS), Remote Code Execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04626974 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04626974 Version: 1 HPSBGN03308 rev....
CVE-2015-2117
HP TippingPoint SMS/vSMS are affected by CVE-2015-2117 due to a JBoss RMI vulnerability exposed without authentication, enabling remote code execution. Affected: SMS/vSMS before 4.1 patch 3 and 4.2 patch 1. Attack surface includes RMI on TCP port 4444; exploitation can upload arbitrary code or in...