Vulnerabilities > CVE-2009-4189 - Credentials Management vulnerability in HP Operations Manager

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
hp
CWE-255
exploit available
metasploit

Summary

HP Operations Manager has a default password of OvW*busr1 for the ovwebusr account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against the /manager servlet in the Tomcat servlet container. NOTE: this might overlap CVE-2009-3099 and CVE-2009-3843.

Vulnerable Configurations

Part Description Count
Application
Hp
1

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionApache Tomcat Manager Application Deployer Authenticated Code Execution. CVE-2009-3548,CVE-2009-3843,CVE-2009-4188,CVE-2009-4189,CVE-2010-0557,CVE-2010-4094....
idEDB-ID:16317
last seen2016-02-01
modified2010-12-14
published2010-12-14
reportermetasploit
sourcehttps://www.exploit-db.com/download/16317/
titleApache Tomcat Manager Application Deployer Authenticated Code Execution

Metasploit

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/125021/tomcat_mgr_upload.rb.txt
idPACKETSTORM:125021
last seen2016-12-05
published2014-02-01
reporterrangercha
sourcehttps://packetstormsecurity.com/files/125021/Apache-Tomcat-Manager-Code-Execution.html
titleApache Tomcat Manager Code Execution