Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:HPOV:CVE-2010-0447-RCE |
|---|---|
Severity |
Minor |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP Performance Insight Helpmanager Servlet Remote Code Execution |
Release Date |
2016/10/26 |
Update Number |
2798 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: HP Performance Insight Helpmanager Servlet Remote Code Execution
This signature detects attempts to exploit a known vulnerability against HP OpenView. A successful attack can lead to arbitrary code execution.
Extended Description
The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbitrary commands via vectors involving upload of a JSP document.
Affected Products
- Hp openview_performance_insight 5.4
References
- CVE: CVE-2010-0447