Lucene search
K

19 matches found

exploitpack
exploitpack
added 2015/01/05 12:7 p.m.28 views

HP-VSA-Remote-Execution

HP VSA / SANiQ Hydra client Nicolas Grégoire [email protected] v0.5 HOST = '192.168.201.11' The remote host PORT = 13838 The hydra port import getopt import re import sys import binascii import struct import socket import os ''' ================================== Define functions...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.29 views

HP StorageWorks P4000 Virtual SAN Appliance Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

7.1AI score
Exploits0
Saint
Saint
added 2013/09/19 12:0 a.m.39 views

HP LeftHand Virtual SAN Appliance hydra Ping Hostname Overflow

Added: 09/19/2013 CVE: CVE-2012-3285 BID: 57754 OSVDB: 89919 Background HP LeftHand Virtual SAN Appliance VSA software is a VMware certified SAN/storage device and virtual appliance that provides complete SAN functionality for VMware Infrastructure without external SAN hardware. Problem HP LeftHa...

10CVSS7.9AI score0.08695EPSS
Exploits4
Exploit DB
Exploit DB
added 2013/08/13 12:0 a.m.37 views

HP StorageWorks P4000 Virtual SAN Appliance - Login Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "HP StorageWorks...

10CVSS7AI score0.61813EPSS
Exploits8
Zero Day Initiative
Zero Day Initiative
added 2013/07/26 12:0 a.m.48 views

Hewlett-Packard LeftHand Virtual SAN Appliance Hydra Login Remote Command Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP LeftHand Virtual SAN Appliance. Authentication is not required to exploit this vulnerability. The flaw exists within the hydra service, specifically with the LHNSessionManager component. This...

10CVSS3.8AI score0.61813EPSS
Exploits8References1
Check Point Advisories
Check Point Advisories
added 2013/04/04 12:0 a.m.3 views

HP LeftHand Virtual SAN Appliance hydra Diag Processing Buffer Overflow (CVE-2012-3283)

A heap buffer overflow vulnerability exists in HP LeftHand Virtual SAN Appliance. The vulnerability is due to insufficient input validation on parameters of a Diag request sent to the hydra service which listens by default on port 13838/TCP. A remote attacker can exploit this vulnerability by...

6.8AI score0.10436EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2013/02/11 12:0 a.m.34 views

Hewlett-Packard LeftHand Virtual SAN Appliance Hydra Ping Hostname Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP LeftHand Virtual SAN Appliance. Authentication is not required to exploit this vulnerability. The flaw exists within the hydra service, specifically with the LHNModParam component. This process...

10CVSS4AI score0.08695EPSS
Exploits4References1
Zero Day Initiative
Zero Day Initiative
added 2013/02/11 12:0 a.m.22 views

Hewlett-Packard LeftHand Virtual SAN Appliance Hydra SNMP Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP LeftHand Virtual SAN Appliance. Authentication is not required to exploit this vulnerability. The flaw exists within the hydra service, specifically within snmp.module!OnSet. This process listen...

10CVSS6AI score0.08695EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2013/02/11 12:0 a.m.33 views

Hewlett-Packard LeftHand Virtual SAN Appliance Hydra Set Disk Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP LeftHand Virtual SAN Appliance. Authentication is not required to exploit this vulnerability. The flaw exists within the hydra service, specifically with the hel.module component. This process...

10CVSS6.2AI score0.10436EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2012/09/06 12:0 a.m.20 views

HP SAN/iQ Virtual SAN Appliance Multiple Parameters Command Execution Vulnerabilities

HP SAN/iQ Virtual SAN Appliance is prone to multiple command execution vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.7CVSS6.9AI score0.0442EPSS
Exploits1References3
Prion
Prion
added 2012/08/20 10:55 p.m.15 views

Hardcoded credentials

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838...

4CVSS7.3AI score0.03203EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2012/08/20 10:0 p.m.50 views

CVE-2012-4362

CVE-2012-4362 : Affects HP SAN/iQ Virtual SAN Appliance (HP SAN/iQ) before version 9.5. The component hydra.exe uses a hardcoded password, L0CAlu53R, for the global$agent account, enabling remote attackers to obtain access to the management service via a login to TCP port 13838. This description ...

4CVSS7AI score0.03203EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2012/08/20 10:0 p.m.20 views

CVE-2012-4362

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838...

6.7AI score0.03203EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2012/05/22 12:0 a.m.26 views

HP StorageWorks P4000 Virtual SAN Appliance Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "HP StorageWorks...

0.5AI score
Exploits0
0day.today
0day.today
added 2012/05/21 12:0 a.m.35 views

HP StorageWorks P4000 Virtual SAN Appliance Command Execution

Exploit for hardware platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2012/05/19 7:53 p.m.39 views

HP StorageWorks P4000 Virtual SAN Appliance Command Execution

This module exploits a vulnerability found in HP's StorageWorks P4000 VSA on versions prior to 9.5. By using a default account credential, it is possible to inject arbitrary commands as part of a ping request via port 13838. This module requires Metasploit: https://metasploit.com/download Current...

7.7CVSS0.7AI score0.47799EPSS
Exploits2
exploitpack
exploitpack
added 2012/02/17 12:0 a.m.14 views

HP VSA - Remote Command Execution

HP VSA - Remote Command Execution !/usr/bin/python ''' ================================== Pseudo documentation ================================== ''' HP VSA / SANiQ Hydra client Nicolas Grégoire v0.5 ''' ================================== Target information ================================== '''...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2011/03/25 12:0 a.m.47 views

ZDI-11-111: (0Day) Hewlett-Packard Virtual SAN Appliance hydra.exe Login Request Remote Code Execution Vulnerability

ZDI-11-111: 0Day Hewlett-Packard Virtual SAN Appliance hydra.exe Login Request Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-111 March 23, 2011 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Hewlett-Packard -- Affected Products: Hewlett-Packa...

1.5AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2011/03/23 12:0 a.m.27 views

(0Day) Hewlett-Packard Virtual SAN Appliance hydra.exe Login Request Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Virtual SAN appliance. Authentication is not required to exploit this vulnerability. The flaw exists within the hydra.exe component which listens by default on port 13838. When...

10CVSS7.4AI score
Exploits0
Rows per page
Query Builder