CVE-2016-1542

EPSS 74.6%

The RPC API in RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and enumerate users by sending an action packet to xmlrpc after an authorization failure.

Affected products

n/a · n/a

public PoCs found — 7

githubgithub.com/bao7uo/bmc_bladelogic★ 20 githubgithub.com/patriknordlen/bladelogic_bmc-cve-2016-1542★ 0 cve_referencewww.exploit-db.com/exploits/43939/unverified cve_referencepacketstormsecurity.com/files/136461/BMC-Server-Automation-BSA-RSCD-Agent-User-Enumeration.htmlunverified cve_referencewww.exploit-db.com/exploits/43902/unverified exploitdbwww.exploit-db.com/exploits/43902unverified exploitdbwww.exploit-db.com/exploits/43939unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/136461/BMC-Server-Automation-BSA-RSCD-Agent-User-Enumeration.html https://selfservice.bmc.com/casemgmt/sc_KnowledgeArticle?sfdcid=kA214000000dBpnCAE&type=Solution https://www.exploit-db.com/exploits/43902/https://www.exploit-db.com/exploits/43939/https://www.insinuator.net/2016/03/bmc-bladelogic-cve-2016-1542-and-cve-2016-1543/http://www.securityfocus.com/archive/1/537909/100/0/threaded