int(5062)

Vulnerability Bulletins

Aumento de privilegios en HP OpenView Storage Data Protector

Vulnerability classification
Property Value
Confidence level Oficial
Impact Aumento de privilegios
Dificulty Experto
Required attacker level Acceso remoto sin cuenta a un servicio estandar

System information
Property Value
Affected manufacturer Comercial Software
Affected software HP OpenView Storage Data Protector

Description
Se ha descubierto una vulnerabilidad en HP OpenView Storage Data Protector.

Un atacante remoto podría aumentar privilegios mediante métodos no determinados.

Solution


Actualización de software

Hewlett-Packard (HPSBMA02502)
B.11.11, B.11.23, B.11.31 (PA) / OV DP6.0 (Cell Server) / patch PHSS_39015
B.11.11, B.11.23, B.11.31 (PA) / OV DP6.0 (Core) / patch PHSS_39015
B.11.23, B.11.31 (IA-64) / OV DP6.0 (Cell Server) / patch PHSS_39016
B.11.23, B.11.31 (IA-64) / OV DP6.0 (Core) / patch PHSS_39106
B.11.11, B.11.23 (PA) / OV DP5.50 (Cell Server) / patch PHSS_39510
B.11.11, B.11.23 (PA) / OV DP5.50 (Core) / patch PHSS_39514
B.11.23 (IA-64) / OV DP5.50 (Cell Server) / patch PHSS_39511
B.11.23 (IA-64) / OV DP5.50 (Core) / patch PHSS_39515
Solaris 2.8, 2.9, 2.10 / OV DP6.0 (Cell Server) / patch DPSOL_00364
Solaris 2.8, 2.9, 2.10 / OV DP6.0 (Core) / patch DPSOL_00366
Solaris 2.7, 2.8, 2.9 / OV DP5.50 (Cell Server) / patch DPSOL_00370
Solaris 2.7, 2.8, 2.9 / OV DP5.50 (Core) / patch DPSOL_00372
RedHat 4AS-x86_64, RedHat 4ES-x86_64 / OV DP6.0 (Cell Server) / patch DPLNX_00068
RedHat 4AS-x86_64, RedHat 4ES-x86_64 / OV DP6.0 (Core) / patch DPLNX_00070
RedHat 4AS-x86_64, RedHat 4ES-x86_64 / OV DP6.10 Linux - Core / patch DPLNX_00076
RedHat 4AS-x86_64, RedHat 4ES-x86_64 / OV DP6.10 Linux - Cell Server / patch DPLNX_00078

Standar resources
Property Value
CVE CVE-2009-4183
BID

Other resources
HP SECURITY BULLETIN (HPSBMA02502)
https://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01992642

Version history
Version Comments Date
1.0 Aviso emitido 2010-01-28
Ministerio de Defensa
CNI
CCN
CCN-CERT