HP-UX PHSS_38783 : HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code, Unauthorized Access to Data (HPSBMA02406 SSRT080100 rev.2)

This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.


Synopsis :

The remote HP-UX host is missing a security-related patch.

Description :

s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 21 :

Potential security vulnerabilities have been identified with HP
OpenView Network Node Manager (OV NNM). The vulnerabilities could be
exploited remotely to allow execution of arbitrary code or
unauthorized access to data.

See also :

http://www.nessus.org/u?90fb6f0b

Solution :

Install patch PHSS_38783 or subsequent.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Family: HP-UX Local Security Checks

Nessus Plugin ID: 39382 (hpux_PHSS_38783.nasl)

Bugtraq ID:

CVE ID: CVE-2008-4559
CVE-2008-4560
CVE-2008-4561
CVE-2008-4562
CVE-2009-0205