HP System Management Homepage JustGetSNMPQueue Command Injection without Metasploit On 18 Feb, 2014 By Maurizio Agazzini (aka inode) Some days ago we tried to use the "exploit/multi/http/hp_sys_mgmt_exec" Metasploit module on one of our targets. The host was vulnerable but a Meterpreter session was not opened: [crayon-5e2a0673a1e37686808053/] After some…
