CVE-2009-4189

HP Operations Manager - RCE

Title source: llm

Description

HP Operations Manager has a default password of OvW*busr1 for the ovwebusr account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against the /manager servlet in the Tomcat servlet container. NOTE: this might overlap CVE-2009-3099 and CVE-2009-3843.

Exploits (3)

metasploit WORKING POC EXCELLENT

rubypocjava

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/tomcat_mgr_upload.rb

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by jduck · rubypocjava

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/tomcat_mgr_deploy.rb

View Code ZIP pw:eip

exploitdb WORKING POC

rubyremotemultiple

https://www.exploit-db.com/exploits/16317

View Code ZIP pw:eip

References (1)

[Various Sources] http://www.intevydis.com/blog/?p=87

Scores

EPSS 0.8349

EPSS Percentile 99.3%

Details

CWE

CWE-255

Status published

Products (1)

hp/operations_manager

Published Dec 03, 2009

Tracked Since Feb 18, 2026