HPE Intelligent Management Center dbman FileTrans Arbitrary File Write (CVE-2017-5822)
An arbitrary file write vulnerability has been reported in the dbman component of HPE Intelligent Management Center. The vulnerability is due to lack of authentication on FileTrans commands, used to transfer files to the host running dbman. A remote, unauthenticated attacker can exploit the vulnerability by sending a maliciously crafted packet to the target server.
from Check Point Update Services Advisories http://ift.tt/2sa2frp
from Check Point Update Services Advisories http://ift.tt/2sa2frp
Comments
Post a Comment