CVE-2011-0276

HP OpenView Performance Insight Server <5.4 - RCE

Title source: llm

Description

HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitrary code via the doPost method in the com.trinagy.servlet.HelpManagerServlet class.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16984

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hp_openview_insight_backdoor.rb

View Code ZIP pw:eip

References (11)

[Vendor Advisory] http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02695453

[Third Party Advisory, VDB Entry] http://osvdb.org/70754

[Vendor Advisory] http://secunia.com/advisories/43145

[Vendor Advisory] http://www.vupen.com/english/advisories/2011/0258

[Third Party Advisory] http://www.zerodayinitiative.com/advisories/ZDI-11-034

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/516093/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/46079

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/16984

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/65038

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1025014

[Third Party Advisory] http://securityreason.com/securityalert/8136

Scores

EPSS 0.8313

EPSS Percentile 99.3%

Details

Status published

Products (5)

hp/openview_performance_insight 5.2

hp/openview_performance_insight 5.3

hp/openview_performance_insight 5.4

hp/openview_performance_insight 5.31

hp/openview_performance_insight 5.41

Published Feb 02, 2011

Tracked Since Feb 18, 2026