HP StorageWorks Default Accounts And Directory Traversal Vulnerabilities Network Vulnerability

Summary

HP StorageWorks is prone to a security-bypass vulnerability and a directory- traversal vulnerability. An attacker could exploit these issues to access arbitrary files on the affected computer, or gain administrative access to the affected application. This may aid in the compromise of the underlying computer. HP StorageWorks P2000 G3 is affected.

Solution

The vendor released an update to address this issue. Please see the references for more information.

References

http://h10010.www1.hp.com/wwpc/us/en/sm/WF05a/12169-304616-241493-241493-241493-3971478.html
http://www.kb.cert.org/vuls/id/885499
http://www.securityfocus.com/bid/51399
http://www.zerodayinitiative.com/advisories/ZDI-12-015/

Updated on 2017-03-28

Severity

Classification

CVE CVE-2011-4788, CVE-2012-0697

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Tandberg Devices Default Password
NEC Enterprise Server Backdoor Unauthorized Access Vulnerability
Dlink DIR Multiple Devices Default Login
Nortel Baystack switch password test
nas4free Default Admin Credentials

HP StorageWorks Default Accounts and Directory Traversal Vulnerabilities

Take action and discover your vulnerabilities