Vulnerabilities > CVE-2006-1774 - Security Bypass vulnerability in HP Compaqhttpserver and System Management Homepage
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
HP System Management Homepage (SMH) 2.1.3.132, when running on CompaqHTTPServer/9.9 on Windows, Linux, or Tru64 UNIX, and when "Trust by Certificates" is not enabled, allows remote attackers to bypass authentication via a crafted URL. The only way to prevent this is to set the Trust level to "Trust by Certificates"
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |