Details of VAR-200403-0145

ID

VAR-200403-0145

TITLE

HP Web Jetadmin Remote Arbitrary Command Execution Vulnerability

Trust: 0.9

sources: CNVD: CNVD-2004-0877 // BID: 9973

DESCRIPTION

HP Web JetAdmin has an integrated and modified Apache web server. Some scripts included in HP Web Jetadmin lack sufficient filtering of parameters, and remote attackers can use this script to execute arbitrary commands with WEB privileges. Use the wja_update_product.hts script, and 'plugins/framework/script/tree.xms' to allow remote attackers to execute arbitrary commands with WEB privileges. This issue is due to a failure of the application to properly validate and sanitize user supplied input. This issue has been tested with an authenticated account on HP Web Jetadmin version 7.5.2546 running on a Windows platform

Trust: 0.81

sources: CNVD: CNVD-2004-0877 // BID: 9973

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2004-0877

AFFECTED PRODUCTS

vendor:	no	model:	-	scope:	-	version:	-	Trust: 0.6
vendor:	hp	model:	web jetadmin	scope:	eq	version:	7.5.2456	Trust: 0.3

sources: CNVD: CNVD-2004-0877 // BID: 9973

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2004-0877
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2004-0877
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2004-0877

THREAT TYPE

network

Trust: 0.3

sources: BID: 9973

TYPE

Input Validation Error

Trust: 0.3

sources: BID: 9973

EXTERNAL IDS

db:	BID	id:	9973	Trust: 0.9
db:	CNVD	id:	CNVD-2004-0877	Trust: 0.6

sources: CNVD: CNVD-2004-0877 // BID: 9973

REFERENCES

url:	http://marc.theaimsgroup.com/?l=bugtraq&m=108016019623003&w=2	Trust: 0.6
url:	http://h10010.www1.hp.com/wwpc-java/offweb/vac/us/en/en/network_software/wja_overview.html	Trust: 0.3
url:	/archive/1/358485	Trust: 0.3
url:	/archive/1/358502	Trust: 0.3

sources: CNVD: CNVD-2004-0877 // BID: 9973

CREDITS

Disclosure of this issue is credited to "wirepair" <wirepair@roguemail.net> and H D Moore <sflist@digitaloffense.net>.

Trust: 0.3

sources: BID: 9973

SOURCES

db:	CNVD	id:	CNVD-2004-0877
db:	BID	id:	9973

LAST UPDATE DATE

2022-05-17T01:57:26.911000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2004-0877	date:	2014-01-22T00:00:00
db:	BID	id:	9973	date:	2004-03-24T00:00:00

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2004-0877	date:	2004-03-24T00:00:00
db:	BID	id:	9973	date:	2004-03-24T00:00:00