HP Jet Admin 6.5 or less Vulnerability

Published: 2005-11-03 13:08:04

CVSS Base Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Recommendations:
The issues are resolved in HP Web Jetadmin version 7.5

Summary:
The remote HP Web Jetadmin is vulnerable to multiple exploits. This includes, but is not limited to, full remote administrative access.

Impact:
An attacker can execute code remotely with SYSTEM level (or root) privileges by invoking the ExecuteFile function. To further exacerbate this issue, there is working exploit code for multiple vulnerabilities within this product.

Solution Type:
Vendor Patch

Detection Type:
Remote Banner

SecurityFocus Bugtraq ID:

https://www.securityfocus.com/bid/9973

References:

http://www.phenoelit.de/stuff/HP_Web_Jetadmin_advisory.txt
http://xforce.iss.net/xforce/xfdb/15989

Search
Severity
High
CVSS Score
7.8

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.