HP-UX PHSS_43890 : s700_800 11.X OV DP7.00 HP-UX IA/PA - Core patch

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote HP-UX host is missing a security-related patch.

Description :

s700_800 11.X OV DP7.00 HP-UX IA/PA - Core patch :

Potential security vulnerabilities have been identified with HP Data
Protector. These vulnerabilities could be remotely exploited to allow
an increase of privilege, create a Denial of Service (DoS), or execute
arbitrary code. References: CVE-2013-2344 (ZDI-CAN-1866, SSRT101217)
CVE-2013-2345 (ZDI-CAN-1869, SSRT101218) CVE-2013-2346 (ZDI-CAN-1870,
SSRT101219) CVE-2013-2347 (ZDI-CAN-1885, SSRT101220) CVE-2013-2348
(ZDI-CAN-1892, SSRT101221) CVE-2013-2349 (ZDI-CAN-1896, SSRT101222)
CVE-2013-2350 (ZDI-CAN-1897, SSRT101223) CVE-2013-6194 (ZDI-CAN-1905,
SSRT101233) CVE-2013-6195 (ZDI-CAN-2008, SSRT101348).

See also :

http://www.nessus.org/u?fe03aaf8

Solution :

Install patch PHSS_43890 or subsequent.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.7
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: HP-UX Local Security Checks

Nessus Plugin ID: 73719 ()

Bugtraq ID: 64647

CVE ID: CVE-2013-2344
CVE-2013-2345
CVE-2013-2346
CVE-2013-2347
CVE-2013-2348
CVE-2013-2349
CVE-2013-2350
CVE-2013-6194
CVE-2013-6195