‘HP Insight Control for Linux Cross Site Request Forgery Vulnerability’

Summary

A potential security vulnerability has been identified in HP Insight Control for Linux.’

Credit:

‘The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02573692


Details

Vulnerable Systems:
 * HP Insight Control for Linux prior to v6.2

Immune Systems:
 * HP Insight Control for Linux v6.2

The vulnerability could be exploited remotely to allow cross site request forgery (CSRF).

CVE Information:
CVE-2010-4106

Disclosure Timeline:
Release Date: 2010-10-28
Last Updated: 2010-10-28′

Categories: UNIX