CVE-2012-3261

Currently unrated

Key Information:

Vendor
HP
Status
Sitescope
Vendor
CVE Published:
25 September 2012

Badges

👾 Exploit Exists🟡 Public PoC

Summary

Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1463.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

Metasploit exploit module for CVE-2012-3261
Created by Rapid7

References

http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docD...
vendor-advisoryx_refsource_HP
http://marc.info/?l=bugtraq&m=134825051608877&w=2
vendor-advisoryx_refsource_HP
http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docD...
vendor-advisoryx_refsource_HP

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability Reserved

.