Detections
Analytics
HP SiteScope Multiple Unspecified Remote Code Execution Vulnerabilities
critical Nessus Plugin ID 69195
Language:
Synopsis
A web application installed on the remote host is affected by multiple, unspecified code execution vulnerabilities.Description
The version of HP SiteScope installed on the remote host is potentially affected by the following code execution vulnerabilities :- Unspecified errors exist related to SOAP functionality for which no further details have been provided.
(CVE-2013-2367)
- An error exists related to handling the SOAP command 'issueSiebelCmd'. (CVE-2013-4835)
- An error exists related to handling the SOAP command 'loadFileContents'. (CVE-2013-6207)
By exploiting these flaws, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application.
Solution
Upgrade to HP SiteScope 11.22 or later.Alternatively, apply Cumulative Fixes SS1014131211 (for 10.14) / SS1113131211 (for 11.13).
See Also
https://www.zerodayinitiative.com/advisories/ZDI-13-263/
https://www.zerodayinitiative.com/advisories/ZDI-14-043/
http://www.nessus.org/u?4a20c50c
http://www.nessus.org/u?7b0f0636
https://www.securityfocus.com/archive/1/531342/30/0/threaded
Plugin Details
Severity: Critical
ID: 69195
File Name: hp_sitescope_hpsbgn02904.nasl
Version: 1.22
Type: remote
Family: CGI abuses
Published: 8/2/2013
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.3
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:hp:sitescope
Required KB Items: www/sitescope
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 7/29/2013
Vulnerability Publication Date: 7/29/2013
Exploitable With
CANVAS (D2ExploitPack)
Core Impact
Metasploit (HP SiteScope issueSiebelCmd Remote Code Execution)
Elliot (HP SiteScope runOMAgentCommand 11.20 RCE)