Monday, 23 November 2009

HP Operations Manager Backdoor Account Code Execution Vulnerability

TippingPoint's Zero Day Initiative (ZDI) has published an advisory for a remote SYSTEM code execution vulnerability in the Hewlett-Packard Operations Manager Server for Windows, due principally to the presence of a hidden user account in the servers Apache Tomcat installation. Code execution is achieved via an arbitrary file upload using the credentials of the hidden user account. This vulnerability was discovered by Stephen Fewer of Harmony Security.

You can read the full ZDI advisory here:

No comments: