CVE-2010-0447

Name of the Vulnerable Software and Affected Versions HP OpenView Performance Insight versions 5.4 and earlier

Description The issue concerns improper authentication and validation of requests in the helpmanager servlet of the web server. This allows remote attackers to execute arbitrary commands, specifically through the upload of a JSP document. No information is provided about the estimated number of potentially affected devices or real-world incidents.

Recommendations For HP OpenView Performance Insight versions 5.4 and earlier, consider disabling the helpmanager servlet as a temporary workaround until a patch is available. Restrict access to the upload functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.