CVE

Id
64757  
CVE No.
CVE-2013-4810  
Status
Candidate  
Description
HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. NOTE: this is probably a duplicate of CVE-2007-1036, CVE-2010-0738, and/or CVE-2012-0874.  
Phase
Assigned (20130712)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
636755 64757 CVE-2013-4810 MISC:http://zerodayinitiative.com/advisories/ZDI-13-229/  View
636756 64757 CVE-2013-4810 HP:HPSBPV02918  View
636757 64757 CVE-2013-4810 URL:http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03897409  View
636758 64757 CVE-2013-4810 HP:SSRT101127  View
636759 64757 CVE-2013-4810 URL:http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03897409  View
636760 64757 CVE-2013-4810 HP:HPSBGN02952  View
636761 64757 CVE-2013-4810 URL:http://marc.info/?l=bugtraq&m=138696448823753&w=2  View
636762 64757 CVE-2013-4810 HP:HPSBGN03323  View
636763 64757 CVE-2013-4810 URL:http://marc.info/?l=bugtraq&m=143039425503668&w=2  View
636764 64757 CVE-2013-4810 HP:SSRT102036  View
636765 64757 CVE-2013-4810 URL:http://marc.info/?l=bugtraq&m=143039425503668&w=2  View
636766 64757 CVE-2013-4810 SECTRACK:1029010  View
636767 64757 CVE-2013-4810 URL:http://www.securitytracker.com/id/1029010  View
636768 64757 CVE-2013-4810 SECUNIA:54788  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
22681 JVNDB-2013-004256 HP ArcSight Enterprise Security Manager の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 HP ArcSight Enterprise Security Manager (ESM) の Web インターフェースには、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2013-4815 64757 4.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-004256.html  View