Compaq WBEM HTTP Server Remote Overflow

This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.


Synopsis :

The remote web server is affected by a buffer overflow vulnerability.

Description :

The remote host is running a Compaq Web Management server.

The remote version of this software is vulnerable to an unspecified
buffer overflow that may allow an attacker to execute arbitrary code
on the remote host with the privileges of the web server process.

See also :

http://www.securityfocus.com/advisories/8087
http://www.nessus.org/u?4840e0e7

Solution :

Upgrade to HP HTTP Server version 5.96 or later or to the System
Management Homepage Version 2.0 or later.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.5
(CVSS2#E:U/RL:U/RC:C)
Public Exploit Available : false

Family: Web Servers

Nessus Plugin ID: 17997 (compaq_wbem_overflow.nasl)

Bugtraq ID: 12566

CVE ID: CVE-2005-4823