CVE-2012-5204

HP iMC <5.2 E0401 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-5204. Includes Metasploit module auxiliary/scanner/http/hp_imc_ictdownloadservlet_traversal.

AI-analyzed exploit summary This Metasploit module exploits a directory traversal vulnerability in HP Intelligent Management Center's IctDownloadServlet to retrieve arbitrary files with SYSTEM privileges. It sends a crafted HTTP GET request with traversal sequences to bypass authentication and access files outside the intended directory.

Description

Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1614.

Exploits (1)

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/hp_imc_ictdownloadservlet_traversal.rb

View Code ZIP pw:eip

This Metasploit module exploits a directory traversal vulnerability in HP Intelligent Management Center's IctDownloadServlet to retrieve arbitrary files with SYSTEM privileges. It sends a crafted HTTP GET request with traversal sequences to bypass authentication and access files outside the intended directory.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: HP Intelligent Management Center 5.1 E0202

No auth needed

Prerequisites: Network access to the target · HP IMC service running on port 8080

MITRE ATT&CK

T1006 - Direct Volume Access T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=136268852804156&w=2

Vendor Advisory vendor-advisory x_refsource_hp

https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03689276

Scores

EPSS 0.1846

EPSS Percentile 96.9%

Details

Status published

Products (4)

hp/intelligent_management_center 5.0 (6 CPE variants)

hp/intelligent_management_center 5.1 (2 CPE variants)

hp/intelligent_management_center < 5.1 (2 CPE variants)

hp/intelligent_management_center_for_automated_network_manager < 5.1

Published Mar 09, 2013

Tracked Since Feb 18, 2026