NSE wanted: HP iLO unauthenticated information disclosure #1016

dmiller-nmap · 2017-09-25T22:13:03Z

As reported on IRC:

(03:26:11 PM) swankier: hello all.  I just learned a neat trick that I felt like sharing.  HP iLo (and maybe other brands) have an unauthenticated info disclosure at <ip>/xmldata?item=all.  It lists firmware version, mac addresses, ip addresses, product ID, serial number, product name and others.
(03:29:20 PM) swankier: it will also show whether it is advanced or standard and if advanced what the product key is

Verified. We would like to have either a NSE script or at least a http-enum fingerprint (in nselib/data/http-fingerprints.lua) to extract info from this simple XML page.

The text was updated successfully, but these errors were encountered:

Attempt to fix issue nmap#1016

…1016

dmiller-nmap added good first issue enhancement NSE labels Sep 25, 2017

m0bi5 pushed a commit to m0bi5/nmap that referenced this issue Sep 30, 2017

Extracting information from /xmldata?item=all

7751643

Attempt to fix issue nmap#1016

m0bi5 mentioned this issue Sep 30, 2017

Extracting information from /xmldata?item=all #1021

Open

This was referenced Dec 5, 2017

[Fix #1016] Script to extract iLO server info from /xmldata?item=all #1080

Closed

Fix #1016 Script to extract iLO server info from /xmldata?item=all #1082

Closed

nmap-bot pushed a commit that referenced this issue Apr 8, 2019

Adds NSE script to extract info from HP iLO servers. Closes #1082 and #…

d014a47

…1016

NSE wanted: HP iLO unauthenticated information disclosure #1016

NSE wanted: HP iLO unauthenticated information disclosure #1016

Comments

dmiller-nmap commented Sep 25, 2017