Back to search
CVE-2013-4810
Published: Sep 13, 2013
Modified: Oct 22, 2025
PUBLISHED
Description
HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplicate of CVE-2007-1036, CVE-2010-0738, and/or CVE-2012-0874.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
HPSBPV02918
vendor-advisory
x_refsource_HP
28713
exploit
x_refsource_EXPLOIT-DB
SSRT101127
vendor-advisory
x_refsource_HP
http://zerodayinitiative.com/advisories/ZDI-13-229/
x_refsource_MISC
HPSBGN03323
vendor-advisory
x_refsource_HP
1029010
vdb-entry
x_refsource_SECTRACK
HPSBGN02952
vendor-advisory
x_refsource_HP
54788
third-party-advisory
x_refsource_SECUNIA
SSRT102036
vendor-advisory
x_refsource_HP
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now