Hp Systems Insight Manager vulnerabilities

CVE-2010-3286 [MEDIUM] CVE-2010-3286: Unspecified vulnerability in HP Systems Insight Manager (SIM) 6.0 and 6.1 allows remote attackers to Unspecified vulnerability in HP Systems Insight Manager (SIM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors.

CVE-2010-1556 [MEDIUM] CVE-2010-1556: Unspecified vulnerability in HP Systems Insight Manager (SIM) 5.3, 5.3 Update 1, and 6.0 allows remo Unspecified vulnerability in HP Systems Insight Manager (SIM) 5.3, 5.3 Update 1, and 6.0 allows remote attackers to obtain sensitive information and modify data via unknown vectors.

CVE-2010-1036 [MEDIUM] CWE-79 CVE-2010-1036: Cross-site scripting (XSS) vulnerability in HP System Insight Manager before 6.0 allows remote attac Cross-site scripting (XSS) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2010-1038 [MEDIUM] CVE-2010-1038: Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users Unspecified vulnerability in HP System Insight Manager before 6.0 allows remote authenticated users to gain privileges via unknown vectors.

CVE-2010-1037 [MEDIUM] CWE-352 CVE-2010-1037: Cross-site request forgery (CSRF) vulnerability in HP System Insight Manager before 6.0 allows remot Cross-site request forgery (CSRF) vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVE-2009-0713 [MEDIUM] CVE-2009-0713: Unspecified vulnerability in WMI Mapper for HP Systems Insight Manager before 2.5.2.0 allows remote Unspecified vulnerability in WMI Mapper for HP Systems Insight Manager before 2.5.2.0 allows remote attackers to obtain sensitive information via unknown vectors.

CVE-2008-4412 [MEDIUM] CWE-200 CVE-2008-4412: Unspecified vulnerability in HP Systems Insight Manager (SIM) before 5.2 Update 2 (C.05.02.02.00) al Unspecified vulnerability in HP Systems Insight Manager (SIM) before 5.2 Update 2 (C.05.02.02.00) allows remote attackers to obtain sensitive information via unspecified vectors.

CVE-2007-2719 [CRITICAL] CWE-287 CVE-2007-2719: Session fixation vulnerability in HP Systems Insight Manager (SIM) 4.2 and 5.0 SP4 and SP5 allows re Session fixation vulnerability in HP Systems Insight Manager (SIM) 4.2 and 5.0 SP4 and SP5 allows remote attackers to hijack web sessions by setting the JSESSIONID cookie.

CVE-2006-0656 [MEDIUM] CVE-2006-0656: Directory traversal vulnerability in HP Systems Insight Manager 4.2 through 5.0 SP3 for Windows allo Directory traversal vulnerability in HP Systems Insight Manager 4.2 through 5.0 SP3 for Windows allows remote attackers to access arbitrary files via unspecified vectors, a different vulnerability than CVE-2005-2006.

CVE-2005-3983 [HIGH] CVE-2005-3983: Unknown vulnerability in the login page for HP Systems Insight Manager (SIM) 4.0 and 4.1, when acces Unknown vulnerability in the login page for HP Systems Insight Manager (SIM) 4.0 and 4.1, when accessed by Microsoft Internet Explorer with the MS04-025 patch, leads to a denial of service (browser hang). NOTE: although the advisory is vague, this issue does not appear to involve an attacker at all. If not, then this issue is not a vulnerability.