21 matches found
EUVD-2016-9377
Malware in sbrugna...
EUVD-2013-2298
Malware in sbrugna...
CVE-2013-2352
LeftHand OS aka SAN iQ 10.5 and earlier on HP StoreVirtual Storage devices does not provide a mechanism for disabling the HP Support challenge-response root-login feature, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of an unused one-time...
CVE-2016-8529
A Remote Arbitrary Command Execution vulnerability in HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS version v12.5 and earlier was found. The problem was resolved in LeftHand OS v12.6 or any subsequent version...
CVE-2016-8529
CVE-2016-8529 describes a Remote Arbitrary Command Execution vulnerability in HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS version v12.5 and earlier. The issue is resolved in LeftHand OS v12.6 or any subsequent version. Affected products include StoreVirtual 400...
CVE-2016-8529
A Remote Arbitrary Command Execution vulnerability in HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS version v12.5 and earlier was found. The problem was resolved in LeftHand OS v12.6 or any subsequent version...
HP LeftHand OS Management Protocol Detection
Binary data hpsaniqhydradetect.nbin...
HP StoreVirtual Storage Remote Unauthorized Access
The remote HP storage system running LeftHand OS has an SSH support backdoor mechanism built in that may allow a remote attacker to gain root shell access to the system. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid73461; scriptversion"2.4"; scriptcvsdate"Date:...
HP StoreVirtual 4000 and StoreVirtual VSA Software dbd_manager RCE
The remote HP storage system running LeftHand OS is affected by an unspecified remote arbitrary code execution vulnerability in the dbdmanager component. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid73463;...
HP LeftHand OS Unmanaged Host Detection
The remote HP storage system running HP LeftHand OS formerly known as SAN/iQ is in an unmanaged state, meaning that it can be accessed and controlled by any remote user and is not protected by any credentials. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
[security bulletin] HPSBST02937 rev.1 - HP StoreVirtual 4000 and StoreVirtual VSA Software dbd_manager, Remote Execution of Arbitrary Code
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03995204 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03995204 Version: 1 HPSBST02937 rev....
HP StoreVirtual 4000/StoreVirtual VSA dbd_manager任意代码执行漏洞
Bugtraq ID:65770 CVE ID:CVE-2013-4841 HP StoreVirtual Storage是一个适用于虚拟化环境的横向扩展存储,支持所有业务的虚拟化需求。 HP StoreVirtual 4000和StoreVirtual VSA所使用的LeftHand OS相关dbdmanager存在一个未明错误,允许远程攻击者利用漏洞执行任意代码。 0 HP LeftHand OS 10.x HP StoreVirtual 4000 Storage HP StoreVirtual VSA 厂商补丁: HP ----- HP LeftHand OS version...
CVE-2013-4841
Unspecified vulnerability in dbdmanager in LeftHand OS before 11.0 in HP StoreVirtual 4000 and StoreVirtual VSA Software formerly LeftHand Virtual SAN Appliance allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1509...
CVE-2013-4841
HP StoreVirtual 4000 and StoreVirtual VSA Software (LeftHand OS) suffer a remote code execution in the dbd_manager component prior to LeftHand OS 11.0. The vulnerability (CVE-2013-4841) allows unauthenticated, remote attackers to execute arbitrary code with root privileges by sending crafted mess...
[security bulletin] HPSBST02896 rev.1 - HP StoreVirtual Storage, Remote Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03825537 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03825537 Version: 1 HPSBST02896 rev....
HP to Patch Remote Backdoor in StoreVirtual Systems
A few weeks after admitting that it had put an administrative backdoor in its StoreOnce backup servers, HP has said it has a similar mechanism in its StoreVirtual storage systems that allows a remote user to access the operating system. The company said the function is meant for remote support us...
CVE-2013-2352
LeftHand OS aka SAN iQ 10.5 and earlier on HP StoreVirtual Storage devices does not provide a mechanism for disabling the HP Support challenge-response root-login feature, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of an unused one-time...
Design/Logic Flaw
LeftHand OS aka SAN iQ 10.5 and earlier on HP StoreVirtual Storage devices does not provide a mechanism for disabling the HP Support challenge-response root-login feature, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of an unused one-time...
CVE-2013-2352
CVE-2013-2352 affects LeftHand OS (San iQ) 10.5 and earlier on HP StoreVirtual Storage devices. The vulnerability stems from an HP Support challenge-response root-login mechanism that cannot be disabled, potentially allowing remote attackers to gain administrative access by leveraging knowledge o...
HP LeftHand OS hydra Detection
One of the network services provided by the hydra daemon was detected on the remote host. This daemon runs on the HP LeftHand OS formerly SAN/iQ and is used in products such as the HP Virtual SAN appliance. This service is used for management and control. C Tenable Network Security, Inc...