CVE-2016-2002

The validateAdminConfig handler in the Analytics Management Console in HPE Vertica 7.0.x before 7.0.2.12, 7.1.x before 7.1.2-12, and 7.2.x before 7.2.2-1 allows remote attackers to execute arbitrary commands via the mcPort parameter, aka ZDI-CAN-3417...

Hewlett Packard Enterprise Vertica validateAdminConfig Processor Arbitrary Command Execution Vulnerability

Hewlett Packard Enterprise Vertica is a data mining analysis system for SQL databases from Hewlett Packard Enterprise HPE. A security vulnerability exists in the validateAdminConfig processor in HPE Vertica. A remote attacker could exploit the vulnerability by providing the 'mcPort' parameter...