HP System Management Homepage

HP System Management Homepage JustGetSNMPQueue Command Injection without Metasploit

On 18 Feb, 2014
By Maurizio Agazzini (aka inode)

Some days ago we tried to use the "exploit/multi/http/hp_sys_mgmt_exec" Metasploit module on one of our targets. The host was vulnerable but a Meterpreter session was not opened: [crayon-5f670740b0338870231024/] After some…