Computer Security
[EN] securityvulns.ru no-pyccku


HP System Management Homepage security vulnerabilities
Published:27.03.2014
Source:
SecurityVulns ID:13640
Type:remote
Threat Level:
5/10
Description:Crossite scripting, information leakage.
Affected:HP : System Management Homepage 7.2
CVE:CVE-2013-6188 (Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) 7.1 through 7.2.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.)
 CVE-2013-4846 (Unspecified vulnerability in HP System Management Homepage (SMH) before 7.3 allows remote attackers to obtain sensitive information via unknown vectors.)
Original documentdocumentHP, [security bulletin] HPSBMU02947 rev.1 - HP System Management Homepage (SMH) Running on Linux and Windows, Remote Disclosure of Information and Cross-Site Request Forgery (CSRF) (27.03.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod