Zero Day Initiative Advisory 09-085 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Operations Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists due to a hidden account present within the Tomcat users XML file. Using this account a malicious user can access the org.apache.catalina.manager.HTMLManagerServlet class. This is defined within the catalina-manager.jar file installed with the product. This servlet allows a remote user to upload a file via a POST request to /manager/html/upload. If an attacker uploads malicious content it can then be accessed and executed on the server which leads to arbitrary code execution under the context of the SYSTEM user.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/82839/ZDI-09-085.txt
Source: https://packetstormsecurity.com/files/82839/Zero-Day-Initiative-Advisory-09-085.html