HP ProCurve Manager Remote Unauthorized Access to Data (HPSBMA02420 SSRT071458)

Medium Nessus Plugin ID 36141


The remote Windows host contains an application that is affected by an information disclosure vulnerability.


The version of HP ProCurve Manager (PCM) installed on the remote host reportedly contains a vulnerability that could allow remote attackers the ability to access arbitrary files hosted on the PCM server.


Apply the appropriate patch as referenced in the vendor advisory above.

See Also



Plugin Details

Severity: Medium

ID: 36141

File Name: hp_pcm_2_322_update_10.nasl

Version: $Revision: 1.11 $

Type: local

Agent: windows

Family: Windows

Published: 2009/04/11

Modified: 2015/01/12

Dependencies: 10456, 13855

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:hp:procurve_manager

Required KB Items: SMB/Registry/Enumerated

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2009/04/08

Reference Information

CVE: CVE-2007-4514

BID: 34451

OSVDB: 53596

CWE: 200