|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> CGI abuses >> HP Systems Insight Manager Namazu lang Directory Traversal Vulnerability Vulnerability Assessment Details
|
HP Systems Insight Manager Namazu lang Directory Traversal Vulnerability |
||
Checks for Namazu lang parameter directory traversal vulnerability in HP Systems Insight Manager Detailed Explanation for this Vulnerability Assessment Summary : The remote web server contains a CGI script that is affected by an directory traversal flaw. Description : The remote host appears to be running HP Systems Insight Manager (SIM), a unified infrastructure management tool. The version of HP SIM on the remote host includes a version of the search engine Namazu that reportedly fails to validate user input to the 'lang' parameter of the 'namazucgi' script. An unauthenticated attacker may be able to exploit this issue to access files on the remote host via directory traversal. See also : http://www.securityfocus.com/advisories/10104 Solution : Update HP SIM's .namazurc configuration file according to the vendor advisory. Network Security Threat Level: Low / CVSS Base Score : 2.3 (AV:R/AC:L/Au:NR/C:P/I:N/A:N/B:N) Networks Security ID: 16571 Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security |
||
Cables, Connectors |
Grandstream GS-HT802 2 Port Analog Telephone Adapter VoIP Phone & Device, Black
$32.00
VoIP IP Phone SIP WAN FV6020 Fanvil Gigabit Office Support IAX IAX2
$35.56
Yealink SIP-T41P PoE Ultra Elegant VoIP Phone
$29.95
Cisco 8841 CP-8841-K9 VoIP Business IP Phone (Charcoal)
$49.00
Cisco CP-7945G VOIP Phone With Stand & Handset Business IP Phone 7945
$3.00
New Cisco 7945G IP VoIP Gigabit GIGE Telephone Phone CP-7945G -
$24.95
Cisco CP-8861-K9 5-Line VoIP Business Phone w/ Stand & Handset
$24.98
Cisco CP-8845-K9 5 Line IP Video Phone - Charcoal
$25.00
LOT OF 10 Cisco CP-7841-K9 VoIP 4-Line Business Phone w/ Stand Handset Cord
$69.99
Cisco VG202XM Analog Voice Gateway VoIP -- [NEW/FULL KIT]
$76.00
|
||
No Discussions have been posted on this vulnerability. |