Vulnerability Bulletins |
Aumengo de privilegios en HP ServiceGuard |
|
Vulnerability classification |
|
| Property | Value |
| Confidence level | Oficial |
| Impact | Obtener acceso |
| Dificulty | Experto |
| Required attacker level | Acceso remoto con cuenta |
System information |
|
| Property | Value |
| Affected manufacturer | GNU/Linux |
| Affected software |
HP Serviceguard for Linux HP Serviceguard Cluster Object Manager |
Description |
|
|
Se ha encontrado una vulnerabilidad en HP ServiceGuard. La vulnerabilidad reside en un error no especificado. Un atacante local podría obtener acceso y aumentar sus privilegios. |
|
Solution |
|
|
Actualización de software Hewlett-Packard Serviceguard A.11.16.11 / RedHat3.0AS RedHat3.0ES / IA32 / patch SGLX_00150 Serviceguard A.11.16.11 / RedHat3.0AS RedHat3.0ES / IA64 / patch SGLX_00151 Serviceguard A.11.16.11 / RedHat3.0AS RedHat3.0ES / x86_64 / patch SGLX_00152 Serviceguard A.11.16.11 / RedHat4AS RedHat4ES / IA32 / SGLX_00121 Serviceguard A.11.16.11 / RedHat4AS RedHat4ES / IA64 / SGLX_00122 Serviceguard A.11.16.11 / RedHat4AS RedHat4ES / x86_64 / patch SGLX_00123 Serviceguard A.11.14.07 / RedHatAS 2.1 RedHatES 2.1 / IA32 / patch SGLX_00148 Cluster Object Manager B.03.01.03 / RedHat3.0AS RedHat3.0ES / IA32 / patch SGLX_00153 Cluster Object Manager B.03.01.03 / RedHat3.0AS RedHat3.0ES / IA 64 / patch SGLX_00154 Cluster Object Manager B.03.01.03 / RedHat3.0AS RedHat3.0ES / x86_64 / patch SGLX_00155 Cluster Object Manager B.03.01.03 / RedHat4AS RedHat4ES / IA32 / patch SGLX_00130 Cluster Object Manager B.03.01.03 / RedHat4AS RedHat4ES / IA 64 / patch SGLX_00131 Cluster Object Manager B.03.01.03 / RedHat4AS RedHat4ES / x86_64 / patch SGLX_00132 Cluster Object Manager B.02.01.04 / RedHatAS 2.1 RedHatES 2.1 / IA32 /patch SGLX_00149 http://itrc.hp.com/ |
|
Standar resources |
|
| Property | Value |
| CVE | CVE-2007-3908 |
| BID | 24920 |
Other resources |
|
|
HP SECURITY BULLETIN (HPSBGN02234) http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01091941-1 |
|
Version history |
||
| Version | Comments | Date |
| 1.0 | Aviso emitido | 2007-07-17 |
| 1.1 | CVE añadido | 2007-08-14 |