CVE-2002-1147
HP Procurve Switch 4000M < c.09.15 - Unauthenticated Denial of Service via Device Reset CGI
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-1147. PoCs published by Brook Powers.
AI-analyzed exploit summary This exploit targets a denial of service vulnerability in HP Procurve Switches in a stack configuration. It allows an unauthenticated attacker to reset member switches by sending a specific HTTP request to the vulnerable device.
Description
The HTTP administration interface for HP Procurve 4000M Switch firmware before C.09.16, with stacking features and remote administration enabled, does not authenticate requests to reset the device, which allows remote attackers to cause a denial of service via a direct request to the device_reset CGI program.
Exploits (1)
This exploit targets a denial of service vulnerability in HP Procurve Switches in a stack configuration. It allows an unauthenticated attacker to reset member switches by sending a specific HTTP request to the vulnerable device.