Title

Multiple Vulnerabilities in HP Version Control Repository Manager (Cat I impact)

Discussion

Hewlett Packard has released a security bulletin addressing multiple vulnerabilities in HP Version Control Repository Manager (VCRM) on Windows and Linux platforms. The VCRM catalogs system software and firmware that is stored in a user-defined repository. To exploit these vulnerabilities an attacker would submit a malicious request to an affected application or entice a user with an active session to view the malicious page. If successfully exploited, this vulnerability would allow an attacker to cause a denial of service condition, gain access to sensitve information, and execute arbitrary code in the context of the web server process.

Check Content

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-73953

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.