Vulnerability CVE-2011-1538


Published: 2011-05-03   Modified: 2012-02-13

Description:
Open redirect vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote authenticated users to redirect other users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
HP Proliant Support Pack (PSP) Running on Linux a
HP
05.05.2011

Type:

CWE-20

(Improper Input Validation)

CVSS2 => (AV:N/AC:M/Au:S/C:P/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.9/10
4.9/10
6.8/10
Exploit range
Attack complexity
Authentication
Remote
Medium
Single time
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
None
Affected software
HP -> Proliant support pack 

 References:
http://www.securitytracker.com/id?1025419
http://securityreason.com/securityalert/8236
http://secunia.com/advisories/44234
http://marc.info/?l=bugtraq&m=130331221326039&w=2
http://marc.info/?l=bugtraq&m=130331221326039&w=2

Copyright 2021, cxsecurity.com

 

Back to Top