Vulnerabilities > CVE-2013-6203 - Remote Code Execution vulnerability in HP Application Information Optimizer
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The Web Console in HP Application Information Optimizer (formerly HP Database Archiving) 6.2, 6.3, 6.4, 7.0, and 7.1 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, aka ZDI-CAN-1656.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 5 |
Seebug
| bulletinFamily | exploit |
| description | Bugtraq ID:65766 CVE ID:CVE-2013-6203 HP Application Information Optimizer数据库软件可用智能数据管理和存储将结构化数据占用空间降至最低,并实现应用信息价值最大化。 HP Application Information Optimizer WEB控制台组件存在未明漏洞,允许远程攻击者利用漏洞执行任意代码。 0 HP Application Information Optimizer 7.1 HP Application Information Optimizer 7.0 HP Application Information Optimizer 6.2 HP Application Information Optimizer 6.3 HP Application Information Optimizer 6.4 厂商补丁: HP ----- 用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c04140965-1 |
| id | SSV:61590 |
| last seen | 2017-11-19 |
| modified | 2014-02-27 |
| published | 2014-02-27 |
| reporter | Root |
| title | HP Application Information Optimizer任意代码执行漏洞 |