Remote Code Execution Vulnerability in HP SiteScope
CVE-2012-3263

Currently unrated

Key Information:

Vendor: HP
Status: Sitescope
Vendor: CVE Published:; 25 September 2012

Summary

An unspecified vulnerability exists in the SOAP feature of HP SiteScope versions 11.10 through 11.12 that could be exploited by remote attackers to execute arbitrary code. This security flaw may allow an attacker to leverage unknown vectors to compromise the affected systems, potentially leading to significant security breaches. Users of HP SiteScope are recommended to review the security advisories and ensure that they apply the necessary patches to protect their environment.

References

http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docD...

vendor-advisoryx_refsource_HP

http://marc.info/?l=bugtraq&m=134825051608877&w=2

vendor-advisoryx_refsource_HP

http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docD...

vendor-advisoryx_refsource_HP

EPSS Score

28% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 25, 2012
Vulnerability Reserved
Jun 6, 2012