HP-UX PHSS_36870 : HP System Management Homepage (SMH) for HP-UX, XSS (HPSBMA02274 SSRT071445 rev.3)

This script is Copyright (C) 2007-2015 Tenable Network Security, Inc.

Synopsis :

The remote HP-UX host is missing a security-related patch.

Description :

s700_800 11.23 HP System Management Homepage A. :

Potential security vulnerabilities have been identified with HP System
Management Homepage (SMH) for HP-UX. These vulnerabilities could by
exploited remotely to allow cross site scripting (XSS).

See also :


Solution :

Install patch PHSS_36870 or subsequent.

Risk factor :

Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.7
Public Exploit Available : true

Family: HP-UX Local Security Checks

Nessus Plugin ID: 27064 (hpux_PHSS_36870.nasl)

Bugtraq ID: 25953

CVE ID: CVE-2007-5302