Hewlett Packard Enterprise System Management Login Panel - Detect

What is the "Hewlett Packard Enterprise System Management Login Panel - Detect?"

The "Hewlett Packard Enterprise System Management Login Panel - Detect" module is designed to detect the presence of the Hewlett Packard Enterprise (HPE) System Management login page. This module focuses on identifying potential misconfigurations or vulnerabilities related to the login panel. The severity of this module is classified as informative, meaning it provides valuable information without indicating an immediate threat. The original author of this module is divya_mudgal.

Impact

This module does not directly impact the system or software being scanned. Instead, it serves as a detection mechanism to identify the presence of the HPE System Management login page. The module does not perform any actions beyond reporting the detection.

How does the module work?

The module utilizes HTTP request templates and matching conditions to identify the HPE System Management login page. It sends a GET request to the "/cpqlogin.htm" path and checks the response body for specific words, including "HPE System Management Homepage" and "/proxy/ssllogin". If both words are found, the module considers the login page to be present.

Here is an example of the HTTP request sent by the module:

GET /cpqlogin.htm

The matching conditions used by the module are based on the response body. It checks for the presence of both "HPE System Management Homepage" and "/proxy/ssllogin" words, using an "and" condition. If both words are found, the module reports the detection of the login page.