HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote malicious users to execute arbitrary code via the doPost method in the com.trinagy.servlet.HelpManagerServlet class.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp openview performance insight 5.2 |
||
hp openview performance insight 5.3 |
||
hp openview performance insight 5.4 |
||
hp openview performance insight 5.31 |
||
hp openview performance insight 5.41 |