NASLDB: HP DDMI on Windows Unspecified Remote Agent Access
General
ID: 39617
Name: HP DDMI on Windows Unspecified Remote Agent Access
Summary: Tries to retrieve a file or execute a command
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: CVSS2#E:U/RL:OF/RC:C
Port: 2738
Family: CGI abuses
Type: Remote
Description
The remote host is running an HP Discovery & Dependency Mapping
Inventory (DDMI) agent to facilitate communications between a central
DDMI server and workstations that are part of the deployed inventory
process.
The version of the agent on the remote host fails to check for
a valid SSL certificate from a known DDMI server before accepting
requests and processing them. An unauthenticated, remote attacker can
leverage this issue to disclose sensitive information about installed
software, read the contents of arbitrary files, launch arbitrary
processes with SYSTEM privileges, etc.
Exploiting
Exploit Available: False
Exploitability Ease: No known exploits are available
Sources
CVE: CVE-2009-1419
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: –
Plugin Release: 2009/07/06
Plugin
Version: 1.13
Filename: hp_ddmi_agent_access.nasl
Filesize: 12726 bytes
MD5 Hash: b1aacd6f9b5fc173de2e8d2367821c36
Identification: Host/OS
Require Keys: –
Dependencies: "http_version.nasl", "os_fingerprint.nasl"
Copyright: This script is Copyright© 2009-2011 Tenable Network Security, Inc.
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack