Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:HP-PROCRVE-MANAGER-CE |
|---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
HP ProCurve Manager EJBInvokerServlet or JMXInvokerServlet Remote Code Execution |
Release Date |
2015/06/09 |
Update Number |
2503 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: HP ProCurve Manager EJBInvokerServlet or JMXInvokerServlet Remote Code Execution
This signature detects attempts to exploit a known vulnerability against HP ProCurve Manager. A successful attack can lead to arbitrary code execution.
Extended Description
HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplicate of CVE-2007-1036, CVE-2010-0738, and/or CVE-2012-0874.
Affected Products
- Hp application_lifecycle_management -
- Hp identity_driven_manager 4.0
- Hp procurve_manager 3.20
- Hp procurve_manager 4.0
References
- BugTraq: 62347
- CVE: CVE-2013-2185
- CVE: CVE-2013-4810