CVE-2009-3843

HP Operations Manager - Access Control

Title source: rule

Description

HP Operations Manager 8.10 on Windows contains a "hidden account" in the XML file that specifies Tomcat users, which allows remote attackers to conduct unrestricted file upload attacks, and thereby execute arbitrary code, by using the org.apache.catalina.manager.HTMLManagerServlet class to make requests to manager/html/upload.

Exploits (3)

metasploit WORKING POC EXCELLENT

rubypocjava

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/tomcat_mgr_upload.rb

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by jduck · rubypocjava

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/tomcat_mgr_deploy.rb

View Code ZIP pw:eip

exploitdb WORKING POC

rubyremotemultiple

https://www.exploit-db.com/exploits/16317

View Code ZIP pw:eip

References (6)

[Mailing List] http://marc.info/?l=bugtraq&m=125873415424980&w=2

[Vendor Advisory] http://secunia.com/advisories/37444

[Third Party Advisory] http://www.zerodayinitiative.com/advisories/ZDI-09-085/

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/54361

[Third Party Advisory, VDB Entry] http://www.osvdb.org/60317

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1023222

Scores

EPSS 0.8683

EPSS Percentile 99.4%

Details

CWE

CWE-264

Status published

Products (1)

hp/operations_manager 8.10

Published Nov 24, 2009

Tracked Since Feb 18, 2026