HP-UX PHSS_41607 : s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 28

This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.


Synopsis :

The remote HP-UX host is missing a security-related patch.

Description :

s700_800 11.X OV NNM7.53 IA-64 Intermediate Patch 28 :

The remote HP-UX host is affected by multiple vulnerabilities :

- Potential security vulnerabilities have been identified
with HP OpenView Network Node Manager (OV NNM). The
vulnerabilities could be exploited remotely to execute
arbitrary code under the context of the user running the
web server. References: CVE-2011-0261 (ZDI-CAN-753)
CVE-2011-0262 (ZDI-CAN-757) CVE-2011-0263 (ZDI-CAN-774)
CVE-2011-0264 (ZDI-CAN-810) CVE-2011-0265 (ZDI-CAN-931)
CVE-2011-0266 (ZDI-CAN-932) CVE-2011-0267 (ZDI-CAN-933)
CVE-2011-0268 (ZDI-CAN-934) CVE-2011-0269 (ZDI-CAN-935)
CVE-2011-0270 (ZDI-CAN-936) CVE-2011-0271 (iDefense).
(HPSBMA02621 SSRT100352)

- A potential vulnerability has been identified with HP
OpenView Network Node Manager (OV NNM) running on
Windows. The vulnerability could be exploited remotely
to execute arbitrary code. References: CVE-2010-2703,
ZDI-CAN-682. (HPSBMA02557 SSRT100025)

See also :

http://www.nessus.org/u?dae68cca
http://www.nessus.org/u?5e3effcb

Solution :

Install patch PHSS_41607 or subsequent.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true