HP-UX PHNE_37898 : HP-UX Running IPv6, Remote Denial of Service (DoS) and Unauthorized Access (HPSBUX02407 SSRT080107 rev.1)

Critical Nessus Plugin ID 35643


The remote HP-UX host is missing a security-related patch.


s700_800 11.11 cumulative ARPA Transport patch :

A potential security vulnerability has been identified with HP-UX running IPv6. This vulnerability could be exploited remotely resulting in a Denial of Service (DoS) and unauthorized access.


Install patch PHNE_37898 or subsequent.

See Also


Plugin Details

Severity: Critical

ID: 35643

File Name: hpux_PHNE_37898.nasl

Version: $Revision: 1.16 $

Type: local

Published: 2009/02/12

Modified: 2015/03/20

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2009/02/02

Reference Information

CVE: CVE-2008-2476, CVE-2008-4404, CVE-2009-0418

BID: 31529

HP: emr_na-c01662367, HPSBUX02407, SSRT080107

IAVB: 2008-B-0070

CWE: 20