HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2012-05-21T20:00:00

Updated: 2024-08-06T19:34:25.796Z

Reserved: 2012-05-09T00:00:00

Link: CVE-2012-2561

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2012-05-21T20:55:21.570

Modified: 2024-11-21T01:39:13.840

Link: CVE-2012-2561

cve-icon Redhat

No data.