Vulnerability Details CVE-2006-1774
HP System Management Homepage (SMH) 2.1.3.132, when running on CompaqHTTPServer/9.9 on Windows, Linux, or Tru64 UNIX, and when "Trust by Certificates" is not enabled, allows remote attackers to bypass authentication via a crafted URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://securitytracker.com/id?1015901
- http://src.telindus.com/articles/hpsm_vulnerability.html
- http://www.securityfocus.com/archive/1/430688/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25761
- http://securitytracker.com/id?1015901
- http://src.telindus.com/articles/hpsm_vulnerability.html
- http://www.securityfocus.com/archive/1/430688/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25761
Products affected by CVE-2006-1774
-
cpe:2.3:a:hp:compaqhttpserver:9.9
-
cpe:2.3:a:hp:system_management_homepage:2.1.3.132