H3C / HPE Intelligent Management Center RMI Java Object Deserialization RCE
Critical Nessus Plugin ID 99728
SynopsisA web application hosted on the remote web server is affected by a remote code execution vulnerability.
DescriptionThe H3C or HPE Intelligent Management Center (iMC) web server running on the remote host is affected by a remote code execution vulnerability due to unsafe deserialization of Java objects to the Apache Commons BeanUtils library via the euplat RMI registry. An unauthenticated, remote attacker can exploit this, by sending a specially crafted RMI message, to execute arbitrary code on the target host.
Note that Intelligent Management Center (iMC) is an HPE product;
however, it is branded as H3C.
SolutionUpgrade to H3C / HPE iMC version 7.3 E0504P02 or later.