NASLDB: HP System Management Homepage < 7.1.1 Multiple Vulnerabilities
General
ID: 59851
Name: HP System Management Homepage < 7.1.1 Multiple Vulnerabilities
Summary: Does a banner check
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:P
CVSS Temporal Vector: CVSS2#E:F/RL:OF/RC:C
Port: 2301
Family: Web Servers
Type: Remote
Description
According to the web server’s banner, the version of HP System
Management Homepage (SMH) hosted on the remote host is earlier than
7.1.1, and is therefore reportedly affected by the following
vulnerabilities :
– The bundled version of the libxml2 library contains
multiple vulnerabilities. (CVE-2011-1944, CVE-2011-2821,
CVE-2011-2834)
– The bundled version of PHP contains multiple
vulnerabilities. (CVE-2011-3379, CVE-2011-4153,
CVE-2011-4885, CVE-2012-1823, CVE-2012-0057,
CVE-2012-0830)
– The bundled version of the Apache HTTP Server contains
multiple vulnerabilities. (CVE-2011-3607, CVE-2011-4317,
CVE-2011-4415, CVE-2012-0021, CVE-2012-0031,
CVE-2012-0053)
– An issue exists in the ‘include/iniset.php’ script in
the embedded RoundCube Webmail version that could lead
to a denial of service. (CVE-2011-4078)
– The bundled version of OpenSSL contains multiple
vulnerabilities. (CVE-2011-4108, CVE-2011-4576,
CVE-2011-4577, CVE-2011-4619, CVE-2012-0027,
CVE-2012-1165)
– The bundled version of curl and libcurl does not
properly consider special characters during extraction
of a pathname from a URL. (CVE-2012-0036)
– An off autocomplete attribute does not exist for
unspecified form fields, which makes it easier for
remote attackers to obtain access by leveraging an
unattended workstation. (CVE-2012-2012)
– An unspecified vulnerability exists that could allow a
remote attacker to cause a denial of service, or
possibly obtain sensitive information or modify data.
(CVE-2012-2013)
– An unspecified vulnerability exists related to improper
input validation. (CVE-2012-2014)
– An unspecified vulnerability allows remote,
unauthenticated users to gain privileges and obtain
sensitive information. (CVE-2012-2015)
– An unspecified vulnerability allows local users to
obtain sensitive information via unknown vectors.
(CVE-2012-2016)
Exploiting
Exploit Available: True
Exploitability Ease: Exploits are available
Sources
CVE: CVE-2011-1944
OSVDB: –
Bugtraq: 48056
scipID: –
Timeline
Vulnerability Disclosure: 2012/04/16
Patch Release: 2011/03/23
Plugin Release: 2012/07/05
Plugin
Version: 1.7
Filename: hpsmh_7_1_1_1.nasl
Filesize: 6868 bytes
MD5 Hash: c5d8345cea2a8388a10c018e7059e316
Identification: www/"port"/hp_smh/source
Require Keys: www/hp_smh
Dependencies: "compaq_wbem_detect.nasl"
Copyright: This script is Copyright© 2012 Tenable Network Security, Inc.
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack