The Agent (aka AgentController) servlet in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 allows remote malicious users to execute arbitrary commands via a HEAD request, aka ZDI-CAN-1745.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp procurve manager 3.20 |
||
hp procurve manager 4.0 |
||
hp identity driven manager 4.0 |