HP select Identity Unspecified Unauthorised Access Vulnerability - Security - World -


Editor Login \| Register		Ekle

> World > Security

HP select Identity Unspecified Unauthorised Access Vulnerability - Security - World -

(Date : 02.04.2008 18:14:33)

HP select Identity Unspecified Unauthorised Access Vulnerability

Secunia Advisory:	SA29643
Release Date:	2008-04-02

Critical:	Less critical
Impact:	Security Bypass Exposure of system information Exposure of sensitive information
Where:	From remote
Solution Status:	Vendor Patch

Software:	HP Select Identity 4.x

CVE reference:	CVE-2008-0709 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: A vulnerability has been reported in HP Select Identity, which can be exploited by malicious users to bypass certain security restrictions. The vulnerability is caused due to an unspecified error and can be exploited to gain access to other user accounts. The vulnerability is reported in versions 4.00, 4.01, 4.11, 4.12, 4.13, and 4.20 running on HP-UX, Windows 2003 Server, Red Hat Linux AS3 and AS4, and Solaris. Solution: Apply patch (see vendor"s advisory for details). http://support.openview.hp.com/selfsolve/patches Provided and/or discovered by: Reported by the vendor. Original Advisory: HPSBMA02317 SRT080026: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01391833

Derecelendir

Kaynak

http://secunia.com/advisories/29643/

İçerik İhbarı

Bağlantılar: bilgininefendisi.net

Open Source Document Project