Intrusion Prevention

HP.System.Management.Homepage.JustGetSNMPQueue.CMD.Injection

Description

This indicates an attack attempt to exploit a Command Injection vulnerability in HP System Management Homepage.
The vulnerability is due to flaw in a script of the application when parsing HTTP requests. A remote attacker may be able to exploit this to execute arbitrary code execution within the context of the System, via a crafted HTTP request.

Affected Products

HP System Management Homepage

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

We currently are unaware of any solution for this vulnerability.

CVE References

CVE-2013-3576