HP Security Bulletin HPSBMU02933 3 - A potential security vulnerability has been identified with HPE SiteScope's loadFileContents SOAP features. The vulnerabilities could be exploited to allow remote code execution, arbitrary file download and Denial of Service (DoS). Revision 3 of this advisory.
9de6c472c0bfacf8870bd1a3961b3220a492329eec58711c15faba3945248411
HP Security Bulletin HPSBMU02933 2 - A potential security vulnerability has been identified with HP SiteScope's loadFileContents SOAP features. The vulnerabilities could be exploited to allow remote code execution, arbitrary file download and Denial of Service (DoS). Revision 2 of this advisory.
3c3fce58d5871296d934c5747bd58def4b2b1e55206ab989526989592b9fe1e7
HP Security Bulletin HPSBMU02933 2 - A potential security vulnerability has been identified with HP SiteScope's loadFileContents SOAP features. The vulnerabilities could be exploited to allow remote code execution, arbitrary file download and Denial of Service (DoS). Revision 2 of this advisory.
3c3fce58d5871296d934c5747bd58def4b2b1e55206ab989526989592b9fe1e7
This Metasploit module exploits a code execution flaw in HP SiteScope. The vulnerability exists in the APISiteScopeImpl web service, specifically in the issueSiebelCmd method, which allows the user to execute arbitrary commands without authentication. This Metasploit module has been tested successfully on HP SiteScope 11.20 over Windows 2003 SP2, Windows 2008 and CentOS 6.5.
b961edaf771081e73dba11e81febc940689847d6bed6412bc6f0a4ad23ff2aae
HP Security Bulletin HPSBMU02933 - A potential security vulnerability has been identified with HP SiteScope's issueSiebelCmd SOAP feature. The vulnerability could be exploited to allow remote code execution. Revision 1 of this advisory.
588349e82e65a6473a891141a831862fce47a5c62fab1f6060ef697301f5ab29