HP AutoPass License Server Remote Code Execution Exploit

This module exploits a remote code execution vulnerability in HP AutoPass License Server. The CommunicationServlet component in HP AutoPass License Server does not enforce authentication and has a directory traversal vulnerability allowing a remote attacker to execute arbitrary code trough a JSP page uploaded to the vulnerable server.
CVE Link
CVE-2013-6221
Exploit Type - Old
Exploits/Remote
Exploit Platform
Windows
Exploit Type
Exploits
Remote
Product Name
Impact Professional