CVE-2010-1586
HP System Management Homepage - 'RedirectUrl' Open Redirection
Severity Score
4.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
3
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the RedirectUrl parameter.
Vulnerabilidad de redireccionamiento directo en red2301.html en HP System Management Homepage (SMH) v2.x.x.x permite a atacantse remotos redireccionar a los usuarios a un sitio web a su elección y provocar ataques phishing a través del parámetro REdirectUrl.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2010-04-25 First Exploit
- 2010-04-28 CVE Reserved
- 2010-04-28 CVE Published
- 2024-08-07 CVE Updated
- 2024-10-26 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/58107 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/33873 | 2010-04-25 | |
| http://www.securityfocus.com/bid/39676 | 2024-08-07 | |
| http://yehg.net/lab/pr0js/advisories/hp_system_management_homepage_url_redirection_abuse | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.0.0 Search vendor "Hp" for product "System Management Homepage" and version "2.0.0" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.0.1 Search vendor "Hp" for product "System Management Homepage" and version "2.0.1" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.0.2 Search vendor "Hp" for product "System Management Homepage" and version "2.0.2" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1 Search vendor "Hp" for product "System Management Homepage" and version "2.1" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.0-103 Search vendor "Hp" for product "System Management Homepage" and version "2.1.0-103" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.0-103\(a\) Search vendor "Hp" for product "System Management Homepage" and version "2.1.0-103\(a\)" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.0-109 Search vendor "Hp" for product "System Management Homepage" and version "2.1.0-109" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.0-118 Search vendor "Hp" for product "System Management Homepage" and version "2.1.0-118" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.1 Search vendor "Hp" for product "System Management Homepage" and version "2.1.1" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.2 Search vendor "Hp" for product "System Management Homepage" and version "2.1.2" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.2-127 Search vendor "Hp" for product "System Management Homepage" and version "2.1.2-127" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.3 Search vendor "Hp" for product "System Management Homepage" and version "2.1.3" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.3.132 Search vendor "Hp" for product "System Management Homepage" and version "2.1.3.132" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.4 Search vendor "Hp" for product "System Management Homepage" and version "2.1.4" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.5 Search vendor "Hp" for product "System Management Homepage" and version "2.1.5" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.5-146 Search vendor "Hp" for product "System Management Homepage" and version "2.1.5-146" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.6 Search vendor "Hp" for product "System Management Homepage" and version "2.1.6" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.6-156 Search vendor "Hp" for product "System Management Homepage" and version "2.1.6-156" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.7 Search vendor "Hp" for product "System Management Homepage" and version "2.1.7" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.7-168 Search vendor "Hp" for product "System Management Homepage" and version "2.1.7-168" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.8 Search vendor "Hp" for product "System Management Homepage" and version "2.1.8" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.8-177 Search vendor "Hp" for product "System Management Homepage" and version "2.1.8-177" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.9 Search vendor "Hp" for product "System Management Homepage" and version "2.1.9" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.9-178 Search vendor "Hp" for product "System Management Homepage" and version "2.1.9-178" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.10-186 Search vendor "Hp" for product "System Management Homepage" and version "2.1.10-186" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.11-197 Search vendor "Hp" for product "System Management Homepage" and version "2.1.11-197" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.12-118 Search vendor "Hp" for product "System Management Homepage" and version "2.1.12-118" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.1.12-200 Search vendor "Hp" for product "System Management Homepage" and version "2.1.12-200" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.2.6 Search vendor "Hp" for product "System Management Homepage" and version "2.2.6" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | System Management Homepage Search vendor "Hp" for product "System Management Homepage" | 2.2.8 Search vendor "Hp" for product "System Management Homepage" and version "2.2.8" | - |
Affected
| ||||||