infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Change description 

Pre-auth is implied.
bug/bundler_fix
sinn3r 2013-12-23 02:33:17 -06:00
parent 4816abe63b
commit 5b647ba6f8
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/exploits/multi/http/hp_sitescope_issuesiebelcmd.rb
View File

@ -21,7 +21,7 @@ class Metasploit3 < Msf::Exploit::Remote
'Description' => %q{ 'Description' => %q{
This module exploits a code execution flaw in HP SiteScope. The vulnerability exists in the This module exploits a code execution flaw in HP SiteScope. The vulnerability exists in the
APISiteScopeImpl web service, specifically in the issueSiebelCmd method, which allows the APISiteScopeImpl web service, specifically in the issueSiebelCmd method, which allows the
user to execute arbitrary commands without prior authentication. This module has been tested user to execute arbitrary commands without authentication. This module has been tested
successfully on HP SiteScope 11.20 over Windows 2003 SP2, Windows 2008 and CentOS 6.5. successfully on HP SiteScope 11.20 over Windows 2003 SP2, Windows 2008 and CentOS 6.5.
}, },
'Author' => 'Author' =>