Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> General >> HP Jet Admin 6.5 or less Vulnerability


Vulnerability Assessment Details

HP Jet Admin 6.5 or less Vulnerability

Vulnerability Assessment Summary
HP JetAdmin 6.5 or less vulnerability

Detailed Explanation for this Vulnerability Assessment

The remote HP Web Jetadmin is vulnerable to multiple exploits. This includes,
but is not limited to, full remote administrative access. A possible hacker
can execute code remotely with SYSTEM level (or root) rights by invoking
the ExecuteFile function. To further exacerbate this issue, there is working
exploit code for multiple vulnerabilities within this product.

See also :
http://www.phenoelit.de/stuff/HP_Web_Jetadmin_advisory.txt
http://xforce.iss.net/xforce/xfdb/15989

Solution: The issues are resolved in HP Web Jetadmin version 7.5

Network Security Threat Level: High

Networks Security ID: 9973, 10224

Vulnerability Assessment Copyright: facq

Cables, Connectors

IBM SYSTEM X3550 M5 SERVER TWO E5-2623V3 3GHZ 128GB 2 X 1TB 7.2K 6G NL SATA
$7349.0
IBM SYSTEM X3550 M5 SERVER TWO E5-2623V3 3GHZ 128GB 2 X 1TB 7.2K 6G NL SATA pictureIBM HX5 BLADECENTER SERVER TWO E7-4860 2.26GHZ 12GB NO HDD
$969.0
IBM HX5 BLADECENTER SERVER TWO E7-4860 2.26GHZ 12GB NO HDD pictureIBM SYSTEM X3650 M5 2.5 SERVER TWO E5-2697V4 2.3GHZ 4 X 32GB 6 X 1.2TB10K 12G
$12079.0
IBM SYSTEM X3650 M5 2.5 SERVER TWO E5-2697V4 2.3GHZ 4 X 32GB 6 X 1.2TB10K 12G pictureIBM SYSTEM X3650 M5 2.5 SERVER E5-2667V3 3.2GHZ 2 X 32GB 4 X 1.2TB10K 12G
$5829.0
IBM SYSTEM X3650 M5 2.5 SERVER E5-2667V3 3.2GHZ 2 X 32GB 4 X 1.2TB10K 12G picture


Discussions

No Discussions have been posted on this vulnerability.