5 matches found
CVE-2001-0134
Affected product family: Compaq web-enabled management software (e.g., Insight Manager, Management Agents and related tools). Vulnerability: a buffer overflow in the authentication/username handling of the web interface (cpqlogin.htm) allows remote code execution with the privileges of the vulner...
CVE-1999-0771
CVE-1999-0771 affects the web components of Compaq Management Agents and the Compaq Survey Utility , enabling a remote attacker to read arbitrary files via a .. (dot dot) path traversal in the web interface. The root cause is insufficient validation of file paths in the affected web components, r...
CVE-2002-2422
CVE-2002-2422 is a cross-site scripting (XSS) vulnerability affecting Compaq Insight Management Agents in versions 2.0, 2.1, 3.6.0, 4.2 and 4.3.7. The issue allows a remote attacker to inject arbitrary web script or HTML by supplying a crafted URL, which causes the script to appear in the resulti...
CVE-1999-0772
The CVE-1999-0772 issue affects Compaq Management Agents and the Compaq Survey Utility. A long string sent to port 2301 can cause a denial of service. The Red Hat entry corroborates the DoS behavior, and PT-1999-1343 outlines practical mitigations: (1) restrict access to port 2301 for Compaq Mana...
CVE-1999-1355
The CVE-1999-1355 entry describes a vulnerability in the BMC Patrol component when installed with Compaq Insight Management Agent 4.23 or earlier, or Management Agents for Servers 4.40 or earlier. The underlying issue is that these configurations create a PFCUser account with a default password a...