Detections
Analytics
HP Intelligent Management Center Multiple Vulnerabilities
critical Nessus Plugin ID 54999
Language:
Synopsis
The version of HP Intelligent Management Center running on the remote host is affected by multiple vulnerabilities.Description
The version of HP Intelligent Management Center running on the remote host contains a number of vulnerabilities that can be exploited remotely without authentication, including code execution and arbitrary file creation.Solution
Upgrade to 5.0_E0101L02 or later.See Also
https://www.zerodayinitiative.com/advisories/ZDI-11-160/
https://www.zerodayinitiative.com/advisories/ZDI-11-163/
https://www.zerodayinitiative.com/advisories/ZDI-11-164/
https://www.zerodayinitiative.com/advisories/ZDI-11-165/
https://www.zerodayinitiative.com/advisories/ZDI-11-166/
https://seclists.org/bugtraq/2011/May/83
https://seclists.org/bugtraq/2011/May/84
https://seclists.org/bugtraq/2011/May/85
https://seclists.org/bugtraq/2011/May/87
https://seclists.org/bugtraq/2011/May/88
https://www.zerodayinitiative.com/advisories/ZDI-11-161/
https://www.zerodayinitiative.com/advisories/ZDI-11-162/
https://seclists.org/bugtraq/2011/May/99
Plugin Details
Severity: Critical
ID: 54999
File Name: hp_imc_multiple_code_execution.nasl
Version: 1.9
Type: remote
Family: Gain a shell remotely
Published: 6/8/2011
Updated: 4/7/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:hp:intelligent_management_center
Exploit Ease: No known exploits are available
Patch Publication Date: 5/16/2011
Vulnerability Publication Date: 5/10/2011
Reference Information
CVE: CVE-2011-1848, CVE-2011-1849, CVE-2011-1850, CVE-2011-1851, CVE-2011-1852, CVE-2011-1853, CVE-2011-1854
BID: 47789