1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: HP SiteScope Directory Traversal

Attack: HP SiteScope Directory Traversal

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a directory traversal vulnerability in HP SiteScope which could result in remote code execution.

Additional Information

HP SiteScope is an agent-less monitoring application.

HP SiteScope is prone to a directory-traversal vulnerability. Specifically, this issue occurs in the 'UploadFilesHandler' url, which allows an attacker to upload files to the server into a directory on the server that allows for scripting. An attacker can exploit this issue to execute arbitrary code within the context of the vulnerable application.

Remote attackers can use specially crafted requests with directory-traversal sequences ('../') to upload arbitrary files to the server.

Exploiting this issue may allow an attacker to upload arbitrary files to the server that could aid in further attacks.

Affected

  • HP SiteScope 11.20

Response


  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube