CVE-2014-2600

8 documents4 sources

Severity

4.0MEDIUM

EPSS

0.2%

top 52.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Icewall Identity Manager HP Icewall SSO Password Reset Option

Timeline

PublishedApr 5

Latest updateMay 13

Description

Unspecified vulnerability in HP IceWall Identity Manager 4.0 through SP1 and 5.0 and IceWall SSO 10.0 Password Reset Option, when Apache Commons FileUpload is used, allows remote authenticated users to cause a denial of service via unknown vectors.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages2 packages

▶NVDhp/icewall_sso_password_reset_option10.0

▶NVDhp/icewall_identity_manager4.0, 5.0+1

🔴Vulnerability Details

GHSA

GHSA-824v-29r9-rmmf: Unspecified vulnerability in HP IceWall Identity Manager 4↗2022-05-13

▶

CVEList

CVE-2014-2600: Unspecified vulnerability in HP IceWall Identity Manager 4↗2014-04-05

▶

💥Exploits & PoCs

Exploit-DB

Advantech AdamView 4.30.003 - '.gni' Local Buffer Overflow (SEH)↗2014-12-09

▶

Exploit-DB

BulletProof FTP Client 2010 - Local Buffer Overflow (SEH)↗2014-12-03

▶

Exploit-DB

Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 - '.wax' Local Buffer Overflow (SEH)↗2014-11-26

▶

Exploit-DB

Microsoft Windows XP SP3 - 'BthPan.sys' Arbitrary Write Privilege Escalation↗2014-07-21

▶

Exploit-DB

Multiple WordPress Plugins (TimThumb 2.8.13 / WordThumb 1.07) - 'WebShot' Remote Code Execution↗2014-06-24

▶