Vulnerabilities > CVE-2013-4841 - Remote Code Execution vulnerability in HP products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Unspecified vulnerability in dbd_manager in LeftHand OS before 11.0 in HP StoreVirtual 4000 and StoreVirtual VSA Software (formerly LeftHand Virtual SAN Appliance) allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1509.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 6 | |
Application | 1 | |
Hardware | 1 |
Nessus
NASL family | Misc. |
NASL id | HP_VSA_11_0.NASL |
description | The remote HP storage system running LeftHand OS is affected by an unspecified remote arbitrary code execution vulnerability in the dbd_manager component. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 73463 |
published | 2014-04-10 |
reporter | This script is Copyright (C) 2014-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/73463 |
title | HP StoreVirtual 4000 and StoreVirtual VSA Software dbd_manager RCE |
code |
|
Seebug
bulletinFamily | exploit |
description | Bugtraq ID:65770 CVE ID:CVE-2013-4841 HP StoreVirtual Storage是一个适用于虚拟化环境的横向扩展存储,支持所有业务的虚拟化需求。 HP StoreVirtual 4000和StoreVirtual VSA所使用的LeftHand OS相关dbd_manager存在一个未明错误,允许远程攻击者利用漏洞执行任意代码。 0 HP LeftHand OS 10.x HP StoreVirtual 4000 Storage HP StoreVirtual VSA 厂商补丁: HP ----- HP LeftHand OS version 11.0已经修复该漏洞,建议用户下载更新: https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=StoreVirtualSW_10.5 |
id | SSV:61589 |
last seen | 2017-11-19 |
modified | 2014-02-27 |
published | 2014-02-27 |
reporter | Root |
title | HP StoreVirtual 4000/StoreVirtual VSA dbd_manager任意代码执行漏洞 |