Back to search
CVE-2012-2561
Published: May 21, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
49218
third-party-advisory
x_refsource_SECUNIA
53556
vdb-entry
x_refsource_BID
VU#859230
third-party-advisory
x_refsource_CERT-VN
1027075
vdb-entry
x_refsource_SECTRACK
HPSBMU02792
vendor-advisory
x_refsource_HP
81981
vdb-entry
x_refsource_OSVDB
SSRT100820
vendor-advisory
x_refsource_HP
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now