APP: HPE Intelligent Management Center dbman Command Injection
This signature detects attempts to exploit a known vulnerability in the dbman component of HPE Intelligent Management Center. Successful exploitation of this vulnerability can lead to remote command execution in the context of SYSTEM or root.
Extended Description
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P04 was found.
Affected Products
Hp intelligent_management_center
References
CVE: CVE-2017-5821
URL: http://www.zerodayinitiative.com/advisories/zdi-17-339/ https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-hpesbhf03746en_us http://www.zerodayinitiative.com/advisories/zdi-17-336/ https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-hpesbhf03745en_us
Short Name
APP:HPE-IMC-ZIP-CI
Severity
Major
Recommended
True
Recommended Action
Drop
Category
APP
Keywords
CVE-2017-5820 CVE-2017-5821 Center Command HPE Injection Intelligent Management dbman
Release Date
07/05/2017
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3337
Port
TCP/2810
False Positive
Unknown
Vendors
Hp
CVSS Score
10.0