httpd.tkd in Radia Integration Server in Hewlett-Packard (HP) OpenView Configuration Management (CM) Infrastructure 4.0 up to and including 4.2i and Client Configuration Manager (CCM) 2.0 allows remote malicious users to read arbitrary files via URLs containing tilde (~) references to home directories, as demonstrated by ~root.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp openview configuration management 4.0 |
||
hp openview configuration management 4.1 |
||
hp openview configuration management 4.2i |
||
hp openview configuration management 4.2 |
||
hp openview client configuraton manager 2.0 |