CVE-2012-5207
Hewlett-Packard Intelligent Management Center RssServlet Information Disclosure Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1661.
Vulnerabilidad no especificada en HP Intelligent Management Center (iMC) y Intelligent Management Center para Automated Network Manager (ANM) anterior a v5.2 E0401, permitiendo a atacantes remotos obtener información sensible, modificar datos o causar una denegación de servicio mediante vectores desconocidos, también conocida como ZDI-CAN-1661.
This vulnerability allows remote attackers to obtain sensitive information on vulnerable installations of HP Intelligent Management Center. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the RssServlet servlet. This servlet suffers from a XML external entity injection vulnerability which allows any file readable by SYSTEM to be disclosed. By abusing this behavior an attacker can disclose administrative credentials and possibly leverage this situation to achieve remote code execution.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2012-10-01 CVE Reserved
- 2013-03-08 CVE Published
- 2024-08-06 CVE Updated
- 2024-10-07 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://marc.info/?l=bugtraq&m=136268852804156&w=2 | 2019-10-09 | |
| https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03689276 | 2019-10-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Hp Search vendor "Hp" | Intelligent Management Center For Automated Network Manager Search vendor "Hp" for product "Intelligent Management Center For Automated Network Manager" | <= 5.1 Search vendor "Hp" for product "Intelligent Management Center For Automated Network Manager" and version " <= 5.1" | e0202 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | <= 5.1 Search vendor "Hp" for product "Intelligent Management Center" and version " <= 5.1" | e0202 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101h03 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101h04 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101l01 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.0 Search vendor "Hp" for product "Intelligent Management Center" and version "5.0" | e0101l02 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.1 Search vendor "Hp" for product "Intelligent Management Center" and version "5.1" | - |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | 5.1 Search vendor "Hp" for product "Intelligent Management Center" and version "5.1" | e0101p01 |
Affected
| ||||||
| Hp Search vendor "Hp" | Intelligent Management Center Search vendor "Hp" for product "Intelligent Management Center" | <= 5.1 Search vendor "Hp" for product "Intelligent Management Center" and version " <= 5.1" | e0202, enterprise |
Affected
| ||||||