HP OpenView Select Access 5.0 through 6.0 does not correctly decode UTF-8 encoded unicode characters in a URL, which could allow remote attackers to bypass access restrictions.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Openview_select_access | Hp | 5.0-patch_4 (including) | 5.0-patch_4 (including) |
| Openview_select_access | Hp | 5.1-patch_1 (including) | 5.1-patch_1 (including) |
| Openview_select_access | Hp | 5.2 (including) | 5.2 (including) |
| Openview_select_access | Hp | 6.0 (including) | 6.0 (including) |
References
- http://www.kb.cert.org/vuls/id/205766
- http://www.securityfocus.com/advisories/6774
- http://www.securityfocus.com/bid/10414
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16247
- http://www.kb.cert.org/vuls/id/205766
- http://www.securityfocus.com/advisories/6774
- http://www.securityfocus.com/bid/10414
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16247