HP ProCurve Manager SNAC UpdateDomainControllerServlet Exploit

This module exploits a path traversal vulnerability in HP ProCurve Manager. The specific flaw exists within the UpdateDomainControllerServlet. This servlet improperly sanitizes the adCert argument allowing the remote attacker could upload a .jsp file and execute arbitrary code. Authentication is not required to exploit this vulnerability.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2013-4811
Product Version: 
2014_R1
Released Date: 
Tuesday, February 11, 2014 - 00:00