HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2012-05-21T20:00:00
Updated: 2024-08-06T19:34:25.796Z
Reserved: 2012-05-09T00:00:00
Link: CVE-2012-2561
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-05-21T20:55:21.570
Modified: 2024-11-21T01:39:13.840
Link: CVE-2012-2561
Redhat
No data.