HP-UX PHSS_37383 : s700_800 11.23 OV DP5.50 IA-64 patch - CORE packet

Critical Nessus Plugin ID 43141


The remote HP-UX host is missing a security-related patch.


s700_800 11.23 OV DP5.50 IA-64 patch - CORE packet :

The remote HP-UX host is affected by multiple vulnerabilities :

- A potential security vulnerability has been identified with OpenView Data Protector Application Recovery Manager version 5.5 and 6.0. The vulnerability could be exploited remotely to create a denial of service (DoS).
(HPSBMA02481 SSRT090113)

- Potential security vulnerabilities have been identified with HP OpenView Storage Data Protector running on HP-UX, Windows, Linux and Solaris. These vulnerabilities could be exploited remotely to execute arbitrary code.
(HPSBMA02252 SSRT061258, SSRT061259)


Install patch PHSS_37383 or subsequent.

See Also




Plugin Details

Severity: Critical

ID: 43141

File Name: hpux_PHSS_37383.nasl

Version: $Revision: 1.17 $

Type: local

Published: 2009/12/14

Modified: 2016/11/18

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2009/12/08

Exploitable With

CANVAS (White_Phosphorus)

Core Impact

Metasploit (HP OmniInet.exe MSG_PROTOCOL Buffer Overflow)

Reference Information

CVE: CVE-2007-2280, CVE-2007-2281, CVE-2009-3844

OSVDB: 60852, 61205, 61206

TRA: TRA-2009-04

HP: emr_na-c01124817, emr_na-c01943909, SSRT061258, SSRT061259, SSRT090113

CWE: 119, 189