HP-UX PHSS_38761 : s700_800 11.X OV NNM7.01 Intermediate Patch 12

This script is Copyright (C) 2008-2014 Tenable Network Security, Inc.


Synopsis :

The remote HP-UX host is missing a security-related patch.

Description :

s700_800 11.X OV NNM7.01 Intermediate Patch 12 :

The remote HP-UX host is affected by multiple vulnerabilities :

- A potential security vulnerability has been identified
with HP OpenView Network Node Manager (OV NNM). The
vulnerability could be exploited remotely to create a
Denial of Service (DoS). (HPSBMA02374 SSRT080046)

- Potential security vulnerabilities have been identified
with HP OpenView Network Node Manager (OV NNM). The
vulnerabilities could be exploited remotely to allow
execution of arbitrary code or unauthorized access to
data. (HPSBMA02406 SSRT080100)

- A potential security vulnerability has been identified
with HP OpenView Network Node Manager (OV NNM). The
vulnerability could be exploited remotely to create a
Denial of Service (DoS). (HPSBMA02392 SSRT071481)

- A potential vulnerability has been identified with HP
OpenView Network Node Manager (OV NNM). The
vulnerability could be exploited remotely execute
arbitrary code or to create a Denial of Service (DoS).
(HPSBMA02338 SSRT080024, SSRT080041)

- Potential security vulnerabilities have been identified
with HP OpenView Network Node Manager (OV NNM). The
vulnerabilities could be exploited remotely to allow
cross site scripting (XSS). (HPSBMA02388 SSRT080059)

- Potential security vulnerabilities have been identified
with HP OpenView Network Node Manager (OV NNM). The
vulnerabilities could be exploited remotely to gain
unauthorized access or to create a Denial of Service
(DoS). References: CVE-2007-3698, CVE-2007-3922, SUN
Alert 102995, 102997. (HPSBMA02384 SSRT071465)

See also :

http://www.nessus.org/u?202438e1
http://www.nessus.org/u?39f46ac2
http://www.nessus.org/u?4abf7ab6
http://www.nessus.org/u?04c58123
http://www.nessus.org/u?fb0e7f7d
http://www.nessus.org/u?90fb6f0b

Solution :

Install patch PHSS_38761 or subsequent.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true