Code Execution Vulnerability in HP OpenView Performance Insight Server
CVE-2011-0276

Currently unrated

Key Information:

Vendor

HP
Status
Openview Performance Insight
Vendor
CVE Published:
2 February 2011

Badges

πŸ‘Ύ Exploit Exists🟑 Public PoC🟣 EPSS 83%

What is CVE-2011-0276?

The HP OpenView Performance Insight Server contains a security flaw due to a hidden account in the com.trinagy.security.XMLUserManager Java class. This vulnerability enables remote attackers to execute arbitrary code through the doPost method in the com.trinagy.servlet.HelpManagerServlet class, leading to potential compromise of the server. Organizations using affected versions should prioritize patching to mitigate risks associated with unauthorized access and system control.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2011-0276 - Proof of Concept

References

http://osvdb.org/70754
vdb-entryx_refsource_OSVDB
http://www.zerodayinitiative.com/advisories/ZDI-11-034
x_refsource_MISC
http://h20000.www2.hp.com/bizsupport/TechSupport/Document...
vendor-advisoryx_refsource_HP

EPSS Score

83% chance of being exploited in the next 30 days.

Timeline

  • 🟑

    Public PoC available

  • πŸ‘Ύ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

JSON
.