Computer Security
[EN] securityvulns.ru no-pyccku


HP Network Virtualization, code execution
Published:04.08.2014
Source:
SecurityVulns ID:13905
Type:remote
Threat Level:
5/10
Affected:HP : HP Network Virtualization 8.6
CVE:CVE-2014-2626 (Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024.)
 CVE-2014-2625 (Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to read arbitrary files via crafted input, aka ZDI-CAN-2023.)
Original documentdocumentHP, [security bulletin] HPSBMU03073 rev.1 - HP Network Virtualization, Remote Execution of Code, Disclosure of Information (04.08.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod