HP System Management Homepage JustGetSNMPQueue Command Injection without Metasploit On 18 Feb, 2014 By Maurizio Agazzini (aka inode) Some days ago we tried to use the "exploit/multi/http/hp_sys_mgmt_exec" Metasploit module on one of our targets. The host was vulnerable but a Meterpreter session was not opened: [crayon-5d35a8d4ac309449202559/] After some…
