24 matches found
EUVD-2010-1991
Malware in sbrugna...
CVE-2010-1972
The default configuration of HP Client Automation HPCA Enterprise Infrastructure aka Radia allows remote attackers to read log files, and consequently cause a denial of service or have unspecified other impact, via web requests...
HP Client Automation 7.9 Command Injection
Exploit Title: HP Client - Automation Command Injection Date: 10/10/2016\n Exploit Author: SlidingWindow , Twitter: @kapilkhot Vendor Homepage: Previosuly HP, now http://www.persistentsys.com/ Version: Tested on version 7.9 but should work on 8.1, 9.0, 9.1 too Tested on: Windows 7 and CentOS...
CVE-2015-7863
CVE-2015-7863 affects Persistent Accelerite Radia Client Automation (formerly HP Client Automation) versions 7.9–9.1 prior to 2015-02-19. The root cause is the default configuration failing to protect the Remote Notify feature with Extended Notify Security, allowing a remote attacker to bypass ac...
Persistent Systems Radia Client Automation Agent Command Injection
The Persistent Systems Radia Client Automation formerly HP Client Automation agent listening on the remote port is affected by a command execution vulnerability due to a flaw in the radexecd.exe component. An unauthenticated, remote attacker can exploit this to execute arbitrary commands in the...
HP Client Automation Command Injection Exploit
This Metasploit module exploits a command injection vulnerability on HP Client Automation, distributed actually as Persistent Systems Client Automation. The vulnerability exists in the Notify Daemon radexecd.exe, which doesn't authenticate execution requests by default neither. This Metasploit...
HP Client Automation Command Injection
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Client Automation Command Injection', 'Description' = %q This module exploits a command injection vulnerability on HP Client...
HP Client - Automation Command Injection (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Client Automation Command Injection', 'Description' = %q This module exploits a command injection vulnerability on HP Client...
HP Client Automation Command Injection
This module exploits a command injection vulnerability on HP Client Automation, distributed actually as Persistent Systems Client Automation. The vulnerability exists in the Notify Daemon radexecd.exe, which doesn't authenticate execution requests by default. This module has been tested...
HP Client Automation radexecd.exe Remote Command Execution
The HP Client Automation service on the remote port is affected by a command execution vulnerability. The vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Client Automation. Authentication is not required to exploit the vulnerability. The flaw exis...
HP Client Automation Satellite Web Console Detection
HP Client Automation Satellite, the portion of HP Client Automation that is installed on client systems, was detected on the remote host. This is used for managing client devices. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid56165; scriptversion"1.5";...
HP Client Automation Web Console Detection
HP Client Automation, a web-based application for managing client devices, was detected on the remote host. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid52978; scriptversion"1.5"; scriptcvsdate"Date: 2019/11/25"; scriptnameenglish:"HP Client Automation Web Console...
HP Client Automation Default Credentials
The remote install of HP Client Automation has a default password 'secret' set. An attacker may connect to it to reconfigure the application and control remote devices. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
HP Client Automation code execution
Code execution with radexecd.exe TCP/3465...
CVE-2011-0889
Unspecified vulnerability in HP Client Automation Enterprise aka HPCA or Radia Notify 5.11, 7.2, 7.5, 7.8, and 7.9 allows remote attackers to execute arbitrary code via unknown vectors...
Code injection
Unspecified vulnerability in HP Client Automation Enterprise aka HPCA or Radia Notify 5.11, 7.2, 7.5, 7.8, and 7.9 allows remote attackers to execute arbitrary code via unknown vectors...
CVE-2011-0889
HP Client Automation (HPCA/Radia Notify) is affected by CVE-2011-0889. The vulnerability resides in radexecd.exe listening on TCP port 3465; when handling remote execute requests, the service does not properly authenticate the requester, enabling a remote attacker to execute arbitrary code, typic...
[security bulletin] HPSBMA02644 SSRT100284 rev.1 - HP Client Automation Enterprise (HPCA) Running on Windows, Remote Execution of Arbitrary Code
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02750690 Version: 1 HPSBMA02644 SSRT100284 rev.1 - HP Client Automation Enterprise HPCA Running on Windows, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin...
CVE-2010-1972
The default configuration of HP Client Automation HPCA Enterprise Infrastructure aka Radia allows remote attackers to read log files, and consequently cause a denial of service or have unspecified other impact, via web requests...
Default configuration
The default configuration of HP Client Automation HPCA Enterprise Infrastructure aka Radia allows remote attackers to read log files, and consequently cause a denial of service or have unspecified other impact, via web requests...