CVE-2013-4810
CVE-2013-4810
In short
HP ProCurve Manager and related applications allow attackers to run malicious code remotely by sending specially crafted data to web services. This is a critical flaw because an attacker needs no credentials and can take complete control of the affected system.
Technical detail
Remote code execution vulnerability in EJBInvokerServlet and JMXInvokerServlet components via unsafe deserialization of marshalled objects (CWE-94). Unauthenticated attackers can exploit this by sending malicious serialized Java objects to vulnerable endpoints, resulting in arbitrary code execution with application privileges.
Summary generated and translated by AI from the official description.
HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplicate of CVE-2007-1036, CVE-2010-0738, and/or CVE-2012-0874.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 2
exploitdbwww.exploit-db.com/exploits/28713unverifiedcve_referencewww.exploit-db.com/exploits/28713/unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03897409http://marc.info/?l=bugtraq&m=138696448823753&w=2http://marc.info/?l=bugtraq&m=143039425503668&w=2http://secunia.com/advisories/54788https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-4810https://www.exploit-db.com/exploits/28713/http://www.securitytracker.com/id/1029010http://zerodayinitiative.com/advisories/ZDI-13-229/