Summary
| Detail | |||
|---|---|---|---|
| Vendor | Hp | First view | 2006-03-06 |
| Product | System Management Homepage | Last view | 2023-12-17 |
| Version | Type | ||
| Update | |||
| Edition | |||
| Language | |||
| Sofware Edition | |||
| Target Software | |||
| Target Hardware | |||
| Other | |||
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.5 | 2023-12-17 | CVE-2023-50271 | A potential security vulnerability has been identified with HP-UX System Management Homepage (SMH). This vulnerability could be exploited locally or remotely to disclose information. |
| 5.6 | 2018-02-15 | CVE-2017-12553 | A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 5.6 | 2018-02-15 | CVE-2017-12552 | A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 5.6 | 2018-02-15 | CVE-2017-12551 | A local arbitrary execution of commands vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 5.6 | 2018-02-15 | CVE-2017-12550 | A local security misconfiguration vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 5.6 | 2018-02-15 | CVE-2017-12549 | A local authentication bypass vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 5.6 | 2018-02-15 | CVE-2017-12548 | A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 5.6 | 2018-02-15 | CVE-2017-12547 | A local arbitrary command execution vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 5.6 | 2018-02-15 | CVE-2017-12546 | A local buffer overflow vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 7.5 | 2018-02-15 | CVE-2017-12545 | A remote denial of service vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 5.4 | 2018-02-15 | CVE-2017-12544 | A cross-site scripting vulnerability in HPE System Management Homepage for Windows and Linux version prior to v7.6.1 was found. |
| 7.5 | 2016-10-28 | CVE-2016-4396 | HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue. |
| 7.5 | 2016-10-28 | CVE-2016-4395 | HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue. |
| 6.5 | 2016-10-28 | CVE-2016-4394 | HPE System Management Homepage before v7.6 allows remote attackers to obtain sensitive information via unspecified vectors, related to an "HSTS" issue. |
| 5.4 | 2016-10-28 | CVE-2016-4393 | HPE System Management Homepage before v7.6 allows "remote authenticated" attackers to obtain sensitive information via unspecified vectors, related to an "XSS" issue. |
| 8.1 | 2016-07-18 | CVE-2016-5388 | Apache Tomcat 7.x through 7.0.70 and 8.x through 8.5.4, when the CGI Servlet is enabled, follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue. NOTE: the vendor states "A mitigation is planned for future releases of Tomcat, tracked as CVE-2016-5388"; in other words, this is not a CVE ID for a vulnerability. |
| 8.1 | 2016-07-18 | CVE-2016-5387 | The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue. NOTE: the vendor states "This mitigation has been assigned the identifier CVE-2016-5387"; in other words, this is not a CVE ID for a vulnerability. |
| 8.1 | 2016-07-18 | CVE-2016-5385 | PHP through 7.0.8 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, as demonstrated by (1) an application that makes a getenv('HTTP_PROXY') call or (2) a CGI configuration of PHP, aka an "httpoxy" issue. |
| 9.8 | 2016-05-21 | CVE-2016-4543 | The exif_process_IFD_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate IFD sizes, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted header data. |
| 7.1 | 2016-05-14 | CVE-2016-2015 | HPE System Management Homepage before 7.5.5 allows local users to obtain sensitive information or modify data via unspecified vectors. |
| 7.7 | 2016-03-18 | CVE-2016-1996 | HPE System Management Homepage before 7.5.4 allows local users to obtain sensitive information or modify data via unspecified vectors. |
| 9.8 | 2016-03-18 | CVE-2016-1995 | HPE System Management Homepage before 7.5.4 allows remote attackers to execute arbitrary code via unspecified vectors. |
| 6.5 | 2016-03-18 | CVE-2016-1994 | HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information via unspecified vectors. |
| 8.1 | 2016-03-18 | CVE-2016-1993 | HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors. |
| 6 | 2015-07-21 | CVE-2015-2134 | Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 7.5.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 25% (10) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 12% (5) | CWE-352 | Cross-Site Request Forgery (CSRF) |
| 12% (5) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 12% (5) | CWE-20 | Improper Input Validation |
| 10% (4) | CWE-264 | Permissions, Privileges, and Access Controls |
| 7% (3) | CWE-200 | Information Exposure |
| 5% (2) | CWE-284 | Access Control (Authorization) Issues |
| 2% (1) | CWE-601 | URL Redirection to Untrusted Site ('Open Redirect') |
| 2% (1) | CWE-476 | NULL Pointer Dereference |
| 2% (1) | CWE-399 | Resource Management Errors |
| 2% (1) | CWE-287 | Improper Authentication |
| 2% (1) | CWE-254 | Security Features |
| 2% (1) | CWE-78 | Improper Sanitization of Special Elements used in an OS Command ('O... |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:27002 | HP-UX running System Management Homepage (SMH), Remote Cross-Site Request For... |
SAINT Exploits
| Description | Link |
|---|---|
| HP System Management Homepage ginkgosnmp.inc Command Injection | More info here |
| HP System Management Homepage iprange Parameter Stack Buffer Overflow | More info here |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 73169 | HP System Management Homepage (SMH) Unspecified Remote Access Restriction Bypass |
| 73168 | HP System Management Homepage (SMH) Unspecified Remote Code Execution |
| 68217 | HP System Management Homepage (SMH) Unspecified Information Disclosure |
| 68216 | HP System Management Homepage (SMH) hmaserv/common/setitem.php Referer HTTP H... |
| 68125 | HP System Management Homepage (SMH) Unspecified XSS |
| 68124 | HP System Management Homepage (SMH) Unspecified CRLF Injection |
| 68025 | HP System Management Homepage (SMH) on Linux Unspecified Information Disclosure |
| 64146 | HP System Management Homepage (SMH) red2301.html RedirectUrl Parameter Arbitr... |
| 64089 | HP System Management Homepage (SMH) Unspecified Data Modification |
| 62109 | HP System Management Homepage (SMH) smhui/getuiinfo servercert Parameter XSS |
| 54608 | HP System Management Homepage (SMH) Unspecified XSS |
| 49521 | HP System Management Homepage (SMH) Unspecified Local Privilege Escalation |
| 48966 | HP System Management Homepage (SMH) Unspecified XSS |
| 46659 | HP System Management Homepage (SMH) Unspecified XSS |
| 45941 | HP System Management Homepage (SMH) for Windows OpenSSL Version Regression |
| 37513 | HP System Management Homepage (SMH) on Linux w/ Novell eDirectory Remote Priv... |
| 36829 | HP System Management Homepage (SMH) Unspecified XSS |
| 24629 | HP System Management Homepage (SMH) Crafted URL Interface Authentication Bypass |
| 23569 | HP System Management Homepage (SMH) on Windows Unspecified Traversal Arbitrar... |
OpenVAS Exploits
| id | Description |
|---|---|
| 2012-07-09 | Name : HP System Management Homepage Multiple Vulnerabilities - July 2012 File : nvt/gb_hp_smh_mult_vuln_july12.nasl |
| 2012-04-25 | Name : HP System Management Homepage Multiple Unspecified Vulnerabilities File : nvt/secpod_hp_smh_mult_unspecified_vuln.nasl |
| 2012-04-23 | Name : HP System Management Homepage Cross-site Request Forgery Vulnerability File : nvt/gb_hp_smh_csrf_vuln.nasl |
| 2011-05-02 | Name : HP System Management Homepage Multiple Vulnerabilities File : nvt/secpod_hp_smh_mult_vuln_apr11.nasl |
| 2010-09-29 | Name : HP System Management Homepage Multiple Vulnerabilities File : nvt/secpod_hp_smh_mult_vuln.nasl |
| 2010-09-20 | Name : HP System Management Homepage Multiple Vulnerabilities File : nvt/gb_hp_smh_mult_vuln_9_2010.nasl |
| 2010-05-05 | Name : HP System Management Homepage Unspecified Vulnerability (Linux) File : nvt/gb_hp_smh_unspecified_vuln_lin.nasl |
| 2010-05-05 | Name : HP System Management Homepage Unspecified Vulnerability (Windows) File : nvt/gb_hp_smh_unspecified_vuln_win.nasl |
| 2010-05-05 | Name : HP System Management Homepage (SMH) 'RedirectUrl' URI Redirection Vulnerability File : nvt/gb_hp_smh_url_redirect_vuln.nasl |
| 2010-02-11 | Name : HP System Management Homepage Cross-site scripting Vulnerability File : nvt/gb_hp_smh_xss_vuln.nasl |
| 2009-06-05 | Name : Ubuntu USN-776-2 (kvm) File : nvt/ubuntu_776_2.nasl |
| 2009-06-01 | Name : HP System Management Homepage Unspecified XSS Vulnerability File : nvt/secpod_hp_smh_unspecified_xss_vuln.nasl |
| 2008-12-02 | Name : HP SMH Unspecified Security Bypass Vulnerability File : nvt/secpod_hp_smh_unspecified_sec_bypass_vuln_900167.nasl |
| 2008-10-14 | Name : HP System Management Homepage Unspecified XSS Vulnerability File : nvt/secpod_hp_smh_unspecified_xss_vuln_900150.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-A-0199 | Multiple Vulnerabilities in Apple Mac OS X Severity: Category I - VMSKEY: V0061337 |
| 2015-B-0093 | Multiple Vulnerabilities in HP System Management Homepage (SMH) Severity: Category I - VMSKEY: V0061133 |
| 2013-B-0109 | HP System Management Homepage (SMH) Command Injection Vulnerability Severity: Category I - VMSKEY: V0040490 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-09-05 | HPE System Management Homepage cross site scripting attempt RuleID : 50887 - Type : SERVER-WEBAPP - Revision : 1 |
| 2019-09-05 | HPE System Management Homepage cross site scripting attempt RuleID : 50886 - Type : SERVER-WEBAPP - Revision : 1 |
| 2017-10-24 | PHP form-based file upload DoS attempt RuleID : 44390 - Type : SERVER-WEBAPP - Revision : 2 |
| 2017-08-15 | HPE System Management Homepage buffer overflow attempt RuleID : 43545 - Type : SERVER-WEBAPP - Revision : 3 |
| 2017-04-12 | cURL and libcurl set-cookie remote code execution attempt RuleID : 41853 - Type : OS-LINUX - Revision : 4 |
| 2016-07-28 | HttpOxy CGI application vulnerability potential man-in-the-middle attempt RuleID : 39737-community - Type : SERVER-WEBAPP - Revision : 2 |
| 2016-08-31 | HttpOxy CGI application vulnerability potential man-in-the-middle attempt RuleID : 39737 - Type : SERVER-WEBAPP - Revision : 2 |
| 2015-02-24 | HP System Management Homepage cross site scripting attempt RuleID : 33114 - Type : SERVER-WEBAPP - Revision : 3 |
| 2015-02-11 | HP System Management iprange parameter buffer overflow attempt RuleID : 32971 - Type : SERVER-WEBAPP - Revision : 6 |
| 2014-01-10 | HP System Management arbitrary command injection attempt RuleID : 27105 - Type : SERVER-WEBAPP - Revision : 6 |
| 2014-01-10 | HP System Management arbitrary command injection attempt RuleID : 27104 - Type : SERVER-WEBAPP - Revision : 6 |
| 2014-01-10 | HP System Management iprange parameter buffer overflow attempt RuleID : 26418 - Type : SERVER-WEBAPP - Revision : 9 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2017-11-03 | Name: The remote host is missing a macOS or Mac OS X security update that fixes mul... File: macosx_SecUpd2017-004.nasl - Type: ACT_GATHER_INFO |
| 2017-10-03 | Name: The remote host is missing a macOS update that fixes multiple security vulner... File: macos_10_13.nasl - Type: ACT_GATHER_INFO |
| 2017-09-28 | Name: The remote web server is affected by multiple vulnerabilities. File: hpsmh_7_6_1.nasl - Type: ACT_GATHER_INFO |
| 2017-07-20 | Name: An enterprise management application installed on the remote host is affected... File: oracle_enterprise_manager_jul_2017_cpu.nasl - Type: ACT_GATHER_INFO |
| 2017-06-26 | Name: The Tenable SecurityCenter application on the remote host contains a web serv... File: securitycenter_apache_2_4_25.nasl - Type: ACT_GATHER_INFO |
| 2017-05-01 | Name: The remote EulerOS host is missing a security update. File: EulerOS_SA-2016-1030.nasl - Type: ACT_GATHER_INFO |
| 2017-05-01 | Name: The remote EulerOS host is missing multiple security updates. File: EulerOS_SA-2016-1049.nasl - Type: ACT_GATHER_INFO |
| 2017-04-13 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2017-0847.nasl - Type: ACT_GATHER_INFO |
| 2017-04-06 | Name: The remote device is missing a vendor-supplied security patch. File: f5_bigip_SOL16704.nasl - Type: ACT_GATHER_INFO |
| 2017-04-06 | Name: The remote Scientific Linux host is missing one or more security updates. File: sl_20170329_curl_on_SL6_x.nasl - Type: ACT_GATHER_INFO |
| 2017-03-31 | Name: The remote host is missing a macOS update that fixes multiple security vulner... File: macos_10_12_4.nasl - Type: ACT_GATHER_INFO |
| 2017-03-30 | Name: The remote Oracle Linux host is missing one or more security updates. File: oraclelinux_ELSA-2017-0847.nasl - Type: ACT_GATHER_INFO |
| 2017-03-14 | Name: An application installed on the remote host is affected by multiple vulnerabi... File: securitycenter_5_4_3_tns_2017_04.nasl - Type: ACT_GATHER_INFO |
| 2017-02-03 | Name: The remote Ubuntu host is missing one or more security-related patches. File: ubuntu_USN-3177-2.nasl - Type: ACT_GATHER_INFO |
| 2017-01-24 | Name: The remote Ubuntu host is missing one or more security-related patches. File: ubuntu_USN-3177-1.nasl - Type: ACT_GATHER_INFO |
| 2017-01-16 | Name: The remote Gentoo host is missing one or more security-related patches. File: gentoo_GLSA-201701-36.nasl - Type: ACT_GATHER_INFO |
| 2017-01-12 | Name: The remote web server is affected by multiple vulnerabilities. File: apache_2_2_32.nasl - Type: ACT_GATHER_INFO |
| 2017-01-12 | Name: The remote web server is affected by multiple vulnerabilities. File: apache_2_4_25.nasl - Type: ACT_GATHER_INFO |
| 2016-12-27 | Name: The remote Slackware host is missing a security update. File: Slackware_SSA_2016-358-01.nasl - Type: ACT_GATHER_INFO |
| 2016-12-21 | Name: The remote FreeBSD host is missing a security-related update. File: freebsd_pkg_862d6ab3c75e11e69f9820cf30e32f6d.nasl - Type: ACT_GATHER_INFO |
| 2016-12-20 | Name: The remote Debian host is missing a security update. File: debian_DLA-749.nasl - Type: ACT_GATHER_INFO |
| 2016-12-20 | Name: The remote Debian host is missing a security update. File: debian_DLA-749.nasl - Type: ACT_GATHER_INFO |
| 2016-12-13 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2016-1440.nasl - Type: ACT_GATHER_INFO |
| 2016-12-01 | Name: The remote Gentoo host is missing one or more security-related patches. File: gentoo_GLSA-201611-22.nasl - Type: ACT_GATHER_INFO |
| 2016-11-21 | Name: The remote Fedora host is missing a security update. File: fedora_2016-38e5b05260.nasl - Type: ACT_GATHER_INFO |
