CVE-2014-2600

Published: Apr 5, 2014Modified: May 6, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

Unspecified vulnerability in HP IceWall Identity Manager 4.0 through SP1 and 5.0 and IceWall SSO 10.0 Password Reset Option, when Apache Commons FileUpload is used, allows remote authenticated users to cause a denial of service via unknown vectors.

Affected (4)

Products: Hp: Icewall Identity Manager, Icewall Sso Password Reset Option

2 products

Icewall Identity Manager

Icewall Sso Password Reset Option

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Hp Icewall Identity Manager	Version 4.0
Hp Icewall Identity Manager	Version 4.0 sp1
Hp Icewall Identity Manager	Version 5.0
Hp Icewall Sso Password Reset Option	Version 10.0

References (2)

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c04214298

Source: hp-security-alert@hp.com

Vendor Advisory

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c04214298

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.