The APISiteScopeImpl SOAP service in HP SiteScope 10.1x and 11.x prior to 11.22 allows remote malicious users to bypass authentication and execute arbitrary code via a direct request to the issueSiebelCmd method, aka ZDI-CAN-1765.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp sitescope 10.11 |
||
hp sitescope 11.21 |
||
hp sitescope 10.13 |
||
hp sitescope 11.01 |
||
hp sitescope 11.1 |
||
hp sitescope 11.10 |
||
hp sitescope 11.11 |
||
hp sitescope 11.12 |
||
hp sitescope 11.20 |