APP: HP SiteScope runOMAgentCommand Command Injection
This signature detects attempts to exploit a command injection vulnerability in the HP SiteScope. It is due to insufficient validation of user-supplied input. A successful attack can lead to arbitrary code execution within the context of the affected application.
Extended Description
Multiple unspecified vulnerabilities in HP SiteScope 11.20 and 11.21, when SOAP is used, allow remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1678.
Affected Products
Hp sitescope
References
BugTraq: 61506
CVE: CVE-2013-2367
URL: http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_nac03861260-1 http://h20565.www2.hp.com/portal/site/hpsc/template.page/public/kb/docdisplay/?docid=emr_na-c03861260-1 http://www.zerodayinitiative.com/advisories/zdi-13-205/ http://securitytracker.com/id?1028844
Short Name
APP:HP-SITESCOPE-CMD-INJ
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2013-2367 Command HP Injection SiteScope bid:61506 runOMAgentCommand
Release Date
10/24/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Hp
CVSS Score
10.0