Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4788

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2011-4788
Last Modified 27 Nov 2012 11:31:52
Published 12 Jan 2012 11:14:38
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4788

Summary

Absolute path traversal vulnerability in the web interface on HP StorageWorks P2000 G3 MSA array systems allows remote attackers to read arbitrary files via a pathname in the URI.

Vulnerable Systems


References

MISC - http://zerodayinitiative.com/advisories/ZDI-12-015/

HP - SSRT100516

HP - HPSBST02735

BUGTRAQ - 20120112 ZDI-12-015 : (0Day) HP StorageWorks P2000 G3 Directory Traversal and Default Account Vulnerabilities


Last Updated: 27 May 2016 10:57:19