48 matches found
EUVD-2018-18859
Malware in sbrugna...
HPE Intelligent Management Center Denial of Service (CVE-2019-5355)
A denial-of-service vulnerability exists in the dbman component of HPE Intelligent Management Center. Successful exploitation of this vulnerability could result in a denial of service condition on the target server...
HPE Intelligent Management Center dbman Command 10018 Multiple Vulnerabilities
The HPE Intelligent Management Center iMC dbman process running on the remote host is affected by multiple vulnerabilities : - A command injection vulnerability exists due to improper validation of user-supplied data. An unauthenticated, remote attacker can exploit this, via a series of specially...
HPE Intelligent Management Center (IMC) Information Disclosure Vulnerability (CNVD-2019-23303)
HPE Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Failure, Configuration, Accounting, Performance and Security FCAPS model. A dbman Opcode 10001 information disclosure vulnerability exists in HPE Intelligent Management Center IMC...
HPE Intelligent Management Center (IMC) Stack Buffer Overflow Vulnerability
HPE Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Failure, Configuration, Accounting, Performance and Security FCAPS model. A dbman decryptMsgAes stack buffer overflow vulnerability exists in HPE Intelligent Management Center IMC...
HPE Intelligent Management Center (IMC) Hardcoded Credentials Remote Code Execution Vulnerability
HPE Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Failure, Configuration, Accounting, Performance and Security FCAPS model. HPE Intelligent Management Center IMC 7.3 E0506P09 and earlier versions have a dbman use of hardcoded...
HPE Intelligent Management Center dbman Multiple Vulnerabilities
The HPE Intelligent Management Center iMC dbman process running on the remote host is affected by multiple vulnerabilities: - A denial of service DoS vulnerability exists due to improper validation of user-supplied data. An unauthenticated, remote attacker can exploit this issue, via a command...
CVE-2018-7115
HPE Intelligent Management Center IMC prior to IMC PLAT 7.3 E0605P06 is vulnerable to a remote buffer overflow in dbman.exe opcode 10001 on Windows. This problem is resolved in IMC PLAT 7.3 E0605P06 or subsequent versions...
CVE-2018-7116
HPE Intelligent Management Center IMC prior to IMC PLAT 7.3 E0605P06 is vulnerable to a remote denial of service via dbman Opcode 10003 'Filename'. This problem is resolved in IMC PLAT 7.3 E0605P06 or subsequent versions...
CVE-2018-7116
CVE-2018-7116 affects HPE Intelligent Management Center (iMC) PLAT prior to 7.3 E0605P06. The vulnerability lies in the dbman process, where improper validation of the length of user-supplied data in a Filename-related request can be exploited remotely to cause a denial of service. Affected versi...
HPE Intelligent Management Center Buffer Overflow Vulnerability
HPE Intelligent Management Center iMC PLAT is a suite of network intelligent management center solutions from Hewlett Packard Enterprise HPE. The solution provides network-wide visibility and enables comprehensive management of resources, services and users. A buffer overflow vulnerability exists...
HPE Intelligent Management Center dbman Command 10001 Information Disclosure
The HPE Intelligent Management Center iMC dbman process running on the remote host is affected by an information disclosure vulnerability. An unauthenticated, remote attacker can exploit this, via a command 10001 request, to view the contents of arbitrary directories under the security context of...
(0Day) Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10006 Command Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dbman service, which listens on TCP port...
(0Day) Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10005 Command Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dbman service, which listens on TCP port...
HPE Intelligent Management Center dbman BackupZipFile Command Injection - Ver2 (CVE-2017-5820)
A command injection vulnerability exist in the dbman component of HPE Intelligent Management Center. The vulnerability is due to missing validation of user-provided parameters when handling BackupZipFile commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...
HPE Intelligent Management Center dbman RestoreZipFile Command Injection - Ver2 (CVE-2017-5821)
A command injection vulnerability exists in the dbman component of HPE Intelligent Management Center. The vulnerability is due to missing validation of user-provided parameters when handling RestoreZipFile commands. A remote, unauthenticated attacker can exploit the vulnerability by sending a...
HPE Intelligent Management Center DBMan RestoreDBase MySQL Command Injection (CVE-2017-5819)
A command injection vulnerability exists in the dbman component of HPE Intelligent Management Center. The vulnerability exists due to missing validation when handling MySQL databases commands...
HPE Intelligent Management Center PLAT Remote Code Execution Vulnerability (CNVD-2018-03956)
HPE Intelligent Management Center iMC PLAT for Windows is a suite of intelligent management center solutions for networks based on the Windows platform from Hewlett Packard Enterprise HPE. The solution provides network-wide visibility and enables comprehensive management of resources, services an...
HPE iMC dbman RestartDB Unauthenticated Remote Command Execution Exploit
This Metasploit module exploits a remote command execution vulnerability in Hewlett Packard Enterprise Intelligent Management Center before version 7.3 E0504P04. The dbman service allows unauthenticated remote users to restart a user-specified database instance OpCode 10008, however the instance ...
HP iMC Plat 7.2 - Remote Code Execution (2)
!/opt/local/bin/python2.7 Exploit Title: HP iMC Plat 7.2 dbman Opcode 10008 Command Injection RCE Date: 11-29-2017 Exploit Author: Chris Lyne @lynerc Vendor Homepage: www.hpe.com Software Link:...