Vulnerabilities > CVE-2013-4846 - Information Disclosure vulnerability in HP System Management Homepage

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

nessus

NVD

Published: 2014-03-14

Updated: 2019-10-09

Summary

Unspecified vulnerability in HP System Management Homepage (SMH) before 7.3 allows remote attackers to obtain sensitive information via unknown vectors.

Vulnerable Configurations

Part	Description	Count
Application	Hp HP System Management Homepage 2.0.0 HP System Management Homepage 2.0.1 HP System Management Homepage 2.0.1.104 HP System Management Homepage 2.0.2 HP System Management Homepage 2.0.2.106 HP System Management Homepage 2.1 HP System Management Homepage 2.1.0-103 HP System Management Homepage 2.1.0-103$A$ HP System Management Homepage 2.1.0-109 HP System Management Homepage 2.1.0-118 HP System Management Homepage 2.1.0.121 HP System Management Homepage 2.1.1 HP System Management Homepage 2.1.2 HP System Management Homepage 2.1.2-127 HP System Management Homepage 2.1.2.127 HP System Management Homepage 2.1.3 HP System Management Homepage 2.1.3.132 HP System Management Homepage 2.1.4 HP System Management Homepage 2.1.4-143 HP System Management Homepage 2.1.4.143 HP System Management Homepage 2.1.5 HP System Management Homepage 2.1.5-146 HP System Management Homepage 2.1.5.146 HP System Management Homepage 2.1.6 HP System Management Homepage 2.1.6-156 HP System Management Homepage 2.1.6.156 HP System Management Homepage 2.1.7 HP System Management Homepage 2.1.7-168 HP System Management Homepage 2.1.7.168 HP System Management Homepage 2.1.8 HP System Management Homepage 2.1.8-177 HP System Management Homepage 2.1.8.179 HP System Management Homepage 2.1.9 HP System Management Homepage 2.1.9-178 HP System Management Homepage 2.1.10 HP System Management Homepage 2.1.10-186 HP System Management Homepage 2.1.10.186 HP System Management Homepage 2.1.11 HP System Management Homepage 2.1.11-197 HP System Management Homepage 2.1.11.197 HP System Management Homepage 2.1.12-118 HP System Management Homepage 2.1.12-200 HP System Management Homepage 2.1.12.201 HP System Management Homepage 2.1.14 HP System Management Homepage 2.1.14.20 HP System Management Homepage 2.1.15 HP System Management Homepage 2.1.15-210 HP System Management Homepage 2.1.15.210 HP System Management Homepage 2.2.6 HP System Management Homepage 2.2.8 HP System Management Homepage 3.0.0 HP System Management Homepage 3.0.0-68 HP System Management Homepage 3.0.0.64 HP System Management Homepage 3.0.1 HP System Management Homepage 3.0.1-73 HP System Management Homepage 3.0.1.73 HP System Management Homepage 3.0.2 HP System Management Homepage 3.0.2-77 HP System Management Homepage 3.0.2.77 HP System Management Homepage 6.0 HP System Management Homepage 6.0.0-95 HP System Management Homepage 6.0.0.96 HP System Management Homepage 6.1 HP System Management Homepage 6.1.0-103 HP System Management Homepage 6.1.0.102 HP System Management Homepage 6.2.0 HP System Management Homepage 6.2.2.7 HP System Management Homepage 6.3.0 HP System Management Homepage 6.3.1 HP System Management Homepage 7.0 HP System Management Homepage 7.1 HP System Management Homepage 7.2 HP System Management Homepage 7.2.1 HP System Management Homepage - HP System Management Homepage 3.2.2 HP System Management Homepage 3.2.7	80

Nessus

NASL family	Web Servers
NASL id	HPSMH_7_3.NASL
description	According to the web server
last seen	2020-06-01
modified	2020-06-02
plugin id	72959
published	2014-03-12
reporter	This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/72959
title	HP System Management Homepage < 7.3 Multiple Vulnerabilities
code	# # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(72959); script_version("1.5"); script_cvs_date("Date: 2018/11/15 20:50:25"); script_cve_id("CVE-2013-4846", "CVE-2013-6188"); script_bugtraq_id(66128, 66129); script_name(english:"HP System Management Homepage < 7.3 Multiple Vulnerabilities"); script_summary(english:"Does a banner check"); script_set_attribute(attribute:"synopsis", value:"The remote web server is affected by multiple vulnerabilities."); script_set_attribute( attribute:"description", value: "According to the web server's banner, the version of HP System Management Homepage (SMH) hosted on the remote web server may be affected by the following vulnerabilities : - Versions prior to 7.3 are affected by an unspecified information disclosure vulnerability. (CVE-2013-4846) - Versions 7.1 through 7.2.2 are affected by an unspecified cross-site request forgery vulnerability. (CVE-2013-6188)" ); # https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c04039138 script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?2d45fc52"); script_set_attribute(attribute:"see_also", value:"https://www.securityfocus.com/archive/1/531406/30/0/threaded"); script_set_attribute(attribute:"solution", value:"Upgrade to HP System Management Homepage 7.3 or later."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"vuln_publication_date", value:"2014/03/10"); script_set_attribute(attribute:"patch_publication_date", value:"2013/11/27"); script_set_attribute(attribute:"plugin_publication_date", value:"2014/03/12"); script_set_attribute(attribute:"cpe", value:"cpe:/a:hp:system_management_homepage"); script_set_attribute(attribute:"plugin_type", value:"remote"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"Web Servers"); script_copyright(english:"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc."); script_dependencies("compaq_wbem_detect.nasl", "os_fingerprint.nasl"); script_require_keys("www/hp_smh"); script_require_ports("Services/www", 2301, 2381); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("http.inc"); include("webapp_func.inc"); # Only Linux and Windows are affected -- HP-UX is not mentioned if (report_paranoia < 2) { os = get_kb_item_or_exit("Host/OS"); if ("Windows" >!< os && "Linux" >!< os) audit(AUDIT_OS_NOT, "Windows or Linux", os); } port = get_http_port(default:2381, embedded:TRUE); install = get_install_from_kb(appname:'hp_smh', port:port, exit_on_fail:TRUE); dir = install['dir']; version = install['ver']; prod = get_kb_item_or_exit("www/"+port+"/hp_smh/variant"); if (version == UNKNOWN_VER) exit(1, 'The version of '+prod+' installed at '+build_url(port:port, qs:dir+"/")+' is unknown.'); # nb: 'version' can have non-numeric characters in it so we'll create # an alternate form and make sure that's safe for use in 'ver_compare()'. version_alt = ereg_replace(pattern:"[_-]", replace:".", string:version); if (!ereg(pattern:"^[0-9][0-9.]+$", string:version_alt)) exit(1, 'The version of '+prod+' installed at '+build_url(port:port, qs:dir+"/")+' does not look valid ('+version+').'); fixed_version = '7.3'; if (ver_compare(ver:version_alt, fix:fixed_version, strict:FALSE) == -1) { # Versions 7.1 to 7.2.2 if ( version_alt =~ "^7\.1([^0-9]\|$)" \|\| version_alt =~ "^7\.2\.[0-2]([^0-9]\|$)" ) set_kb_item(name:'www/'+port+'/XSRF', value:TRUE); if (report_verbosity > 0) { source_line = get_kb_item("www/"+port+"/hp_smh/source"); report = '\n Product : ' + prod; if (!isnull(source_line)) report += '\n Version source : ' + source_line; report += '\n Installed version : ' + version + '\n Fixed version : ' + fixed_version + '\n'; security_warning(port:port, extra:report); } else security_warning(port); exit(0); } else audit(AUDIT_LISTEN_NOT_VULN, prod, port, version);

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04039138