87 matches found
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Hp Power_Manager
As part of my OSCP preparation I came across CVE-2009-3999 HP P...
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Hp Power_Manager
CVE-2009-3999 HP Power Manager 4.2 Build 7 exploit inspire...
EUVD-2011-0303
Malware in sbrugna...
EUVD-2007-2346
Malware in sbrugna...
EUVD-2011-0306
Malware in sbrugna...
CVE-2009-4000
Directory traversal vulnerability in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to overwrite arbitrary files, and execute arbitrary code, via directory traversal sequences in the fileName parameter...
HP Power Manager Administration - Universal Buffer Overflow Exploit
No description provided by source. !/usr/bin/python HP Power Manager Administration Universal Buffer Overflow Exploit CVE 2009-2685 Tested on Win2k3 Ent SP2 English, Win XP Sp2 English Matteo Memelli ryujin A-T offensive-security.com www.offensive-security.com Spaghetti & Pwnsauce - 07/11/2009...
HP Power Manager 'formExportDataLogs' Buffer Overflow
No description provided by source. $Id: hppowermanagerfilename.rb 14016 2011-10-20 17:40:21Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
HP Power Manager 'formExportDataLogs' Buffer Overflow
This module exploits a buffer overflow in HP Power Manager's 'formExportDataLogs'. By creating a malformed request specifically for the fileName parameter, a stack-based buffer overflow occurs due to a long error message which contains the fileName, which may result in arbitrary remote code...
HP Power Manager - 'formExportDataLogs' Remote Buffer Overflow (Metasploit)
$Id: hppowermanagerfilename.rb 14016 2011-10-20 17:40:21Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
HP Power Manager 'formExportDataLogs' Buffer Overflow
Exploit for cgi platform in category remote exploits $Id: hppowermanagerfilename.rb 14016 2011-10-20 17:40:21Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in HP Power Manager HPPM 4.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the logType parameter to Contents/exportlogs.asp, 2 the Id parameter to Contents/pagehelp.asp, or the 3 SORTORD or 4 SORTCOL parameter t...
CVE-2011-0280
Multiple cross-site scripting XSS vulnerabilities in HP Power Manager HPPM 4.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the logType parameter to Contents/exportlogs.asp, 2 the Id parameter to Contents/pagehelp.asp, or the 3 SORTORD or 4 SORTCOL parameter t...
CVE-2011-0280
Multiple cross-site scripting XSS vulnerabilities in HP Power Manager HPPM 4.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the logType parameter to Contents/exportlogs.asp, 2 the Id parameter to Contents/pagehelp.asp, or the 3 SORTORD or 4 SORTCOL parameter t...
CVE-2011-0280
CVE-2011-0280 affects HP Power Manager (HPPM)
HP Power Manager Unspecified Cross Site Scripting Vulnerability
The HP Power Manager is prone to an unspecified cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may l...
HP Power Manager Unspecified Cross Site Scripting Vulnerability
The HP Power Manager is prone to an unspecified cross-site scripting vulnerability because it fails to properly sanitize user- supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...
HP Power Manager Administration Web Server Stack Buffer Overflow (CVE-2010-4113)
HP Power Manager is a web-based application for managing a HP Uninterruptible Power System UPS. The web management console allows users to monitor, manage, and control a single UPS locally and remotely. A buffer overflow vulnerability exists within HP Power Manager. The vulnerability is due to a...
HP Power Manager Unspecified Cross-Site Request Forgery
HP Power Manager was detected on the remote host. All versions of this software reportedly have an unspecified cross-site request forgery vulnerability. The application does not attempt to validate user requests before performing them. It makes no distinction between user actions that are perform...
HP Power Manager <= 4.3.2 Multiple Vulnerabilities
HP Power Manager is prone to cross-site request forgery CSRF and cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...