CVE-2010-1586

MEDIUM

Description

Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the RedirectUrl parameter.

References

http://www.securityfocus.com/bid/39676

http://yehg.net/lab/pr0js/advisories/hp_system_management_homepage_url_redirection_abuse

https://exchange.xforce.ibmcloud.com/vulnerabilities/58107

Details

Source: MITRE

Published: 2010-04-28

Updated: 2017-08-17

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM