cbcvebase.
CVE-2013-6221
published 2014-06-18

CVE-2013-6221: Directory traversal vulnerability in CommunicationServlet in HP Service Virtualization 3.x before 3.50.1, when the AutoPass license server is enabled, allows…

PriorityP275critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
77.94%
99.5th percentile
Directory traversal vulnerability in CommunicationServlet in HP Service Virtualization 3.x before 3.50.1, when the AutoPass license server is enabled, allows remote attackers to create arbitrary files and consequently execute arbitrary code via unspecified vectors, aka ZDI-CAN-2031.

Affected

1 ranges
VendorProductVersion rangeFixed in
hpservice_virtualization

Detection & IOCsextracted from sources · hover to see the quote

port5814
url/autopass/cs/pdfupload
path/autopass
command../
  • Monitor for unauthenticated HTTP POST requests to the CommunicationServlet endpoint /autopass/cs/pdfupload, which is the upload vector exploited without any authentication check.
  • Detect directory traversal sequences (e.g., '../' or '/..') in the filename field of multipart/form-data uploads to /autopass/cs/pdfupload.
  • Alert on HTTP POST multipart/form-data requests to /autopass/cs/pdfupload containing a form-data field named 'uploadedFile' with a filename containing traversal characters.
  • Detect HTTP 500 responses from HP AutoPass License Server containing both 'java.lang.NullPointerException' and 'com.hp.autopass' as a fingerprinting indicator of a vulnerable instance.
  • ·The exploit only works when the AutoPass license server feature is enabled within HP Service Virtualization; installations without this component enabled are not exposed.
  • ·The default traversal depth values (INSTALL_DEPTH=4, WEBAPPS_DEPTH=1) are tuned for the default installation path of HP AutoPass License Server 8.01; non-default install paths may require different depths.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.