HomePentest-Tools.com Logo

HP/HPE System Management Homepage (SMH) RedirectUrl URI Redirection Vulnerability (HPSBMA02583) CVE-2010-1586

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

HP/HPE System Management Homepage (SMH) is prone to a URL redirection vulnerability.

Risk description

Input data passed to the RedirectUrl parameter in red2301.html is not being properly validated. Successful exploitation will allow remote attackers to redirect to his choice of malicious site via the trusted vulnerable SMH url or aid in phishing attacks.

Recommendation

Update to version 6.2 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Apr 28, 2010
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available