HP-UX PHCO_28847 : s700_800 11.00 Software Distributor (SD) Cumulative Patch

This script is Copyright (C) 2005-2014 Tenable Network Security, Inc.


Synopsis :

The remote HP-UX host is missing a security-related patch.

Description :

s700_800 11.00 Software Distributor (SD) Cumulative Patch :

The remote HP-UX host is affected by multiple vulnerabilities :

- SD utilities (swinstall(1M), swverify(1M) and others)
have a locally exploitable buffer overflow. (HPSBUX00293
SSRT3656)

- A potential security vulnerability has been identified
in HP-UX running swagentd. The vulnerability could be
exploited remotely by an unauthenticated user to cause
swagentd to abort resulting in a Denial of Service
(DoS). References: HPSBUX0311-299 SSRT3660. (HPSBUX02105
SSRT061134)

See also :

http://www.nessus.org/u?1f3ddad3
http://www.nessus.org/u?e92e3fa2

Solution :

Install patch PHCO_28847 or subsequent.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: HP-UX Local Security Checks

Nessus Plugin ID: 16982 (hpux_PHCO_28847.nasl)

Bugtraq ID:

CVE ID: CVE-2006-1389