Lucene search
Andrea Micalizzi aka rgodZDI-13-050HistoryMar 22, 2013 - 12:00 a.m.
Hewlett-Packard Intelligent Management Center mibFileUpload Servlet Remote Code Execution Vulnerability
2013-03-2200:00:00
Andrea Micalizzi aka rgod
www.zerodayinitiative.com
16
EPSS
0.784
Percentile
98.3%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the mibFileUpload servlet. Authentication is not required to access this servlet, which allows a file to be written to the server. By abusing this behavior an attacker can place a file and leverage the situation to achieve remote code execution as the SYSTEM user.
Related
exploitdb
exploitdb
HP Intelligent Management Center - Arbitrary File Upload (Metasploit)
2013-03-26 00:00:00
prion
prion
Code injection
2013-03-09 11:55:00
metasploit
metasploit
HP Intelligent Management Center Arbitrary File Upload
2013-03-24 23:54:30
saint
saint
checkpoint_advisories
checkpoint_advisories
cvelist
cvelist
CVE-2012-5201
2013-03-09 11:01:00
zdt
zdt
HP Intelligent Management Center Arbitrary File Upload
2013-03-26 00:00:00
nvd
nvd
CVE-2012-5201
2013-03-09 11:55:01
packetstorm
packetstorm
HP Intelligent Management Center Arbitrary File Upload
2013-03-26 00:00:00
cve
cve
CVE-2012-5201
2013-03-09 11:55:01
nessus
nessus
HP Intelligent Management Center < 5.2 E0401 Multiple Vulnerabilities
2013-04-24 00:00:00
HP Intelligent Management Center < 5.2 E401 Multiple Vulnerabilities
2013-03-13 00:00:00
openvas
openvas
HP Intelligent Management Center (iMC) Multiple Vulnerabilities
2016-09-22 00:00:00
securityvulns
securityvulns
HP Intelligent Management Center multiple security vulnerabilities
2013-03-11 00:00:00