This script is Copyright (C) 2017 Tenable Network Security, Inc.
A web application hosted on the remote web server is affected by a
remote code execution vulnerability.
The H3C or HPE Intelligent Management Center (iMC) web server running
on the remote host is affected by a remote code execution
vulnerability due to unsafe deserialization of Java objects to
the Apache Commons BeanUtils library via the euplat RMI registry. An
unauthenticated, remote attacker can exploit this, by sending a
specially crafted RMI message, to execute arbitrary code on the target
Note that Intelligent Management Center (iMC) is an HPE product;
however, it is branded as H3C.
See also :
Upgrade to H3C / HPE iMC version 7.3 E0504P02 or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.8
Public Exploit Available : true