HP Intelligent Management Center 'flexFileUpload' Servlet Remote Code Execution Vulnerability

Bugtraq ID:	58965
Class:	Input Validation Error
CVE:	CVE-2012-5209
Remote:	Yes
Local:	No
Published:	Mar 07 2013 12:00AM
Updated:	Mar 07 2013 12:00AM
Credit:	Andrea Micalizzi aka rgod
Vulnerable:	HP Intelligent Management Center Standard Edition 5.1 E0202 HP Intelligent Management Center for Automated Network Manager 5.1 E0202 HP Intelligent Management Center Enterprise Edition 5.1 E0202
Not Vulnerable:	HP Intelligent Management Center User Access Manager (UAM) 5.2_E0402 HP Intelligent Management Center Standard Edition for Windows 5.2_E0401 HP Intelligent Management Center Standard Edition for Linux 5.2_E0401 HP Intelligent Management Center Enterprise Edition for Windows 5.2_E0401 HP Intelligent Management Center Enterprise Edition for Linux 5.2_E0401 HP IMC for Automated Network Manager Enterprise Edition (Windows) 5.2_E0401 HP IMC for Automated Network Manager Enterprise Edition (Linux) 5.2_E0401

HP Intelligent Management Center 'flexFileUpload' Servlet Remote Code Execution Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].