Vulnerabilities > CVE-2010-1972 - Configuration vulnerability in HP Client Automation Enterprise Infrastructure

CVSS 9.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

CWE-16

critical

NVD

Published: 2010-07-22

Updated: 2019-10-09

Summary

The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote attackers to read log files, and consequently cause a denial of service or have unspecified other impact, via web requests.

Vulnerable Configurations

Part	Description	Count
Application	Hp HP Client Automation Enterprise Infrastructure *	1

Common Weakness Enumeration (CWE)

CWE-16 - Configuration

References

http://marc.info/?l=bugtraq&m=127905601332098&w=2
http://secunia.com/advisories/40592
http://securitytracker.com/id?1024191