HP-UX PHCO_42316 : HP-UX running VEA, Remote Denial of Service (DoS), Execution of Arbitrary Code (HPSBUX02700 SSRT100506 rev.2)

critical Nessus Plugin ID 56834


The remote HP-UX host is missing a security-related patch.


s700_800 11.31 VERITAS Enterprise Administrator Srvc Patch :

Potential security vulnerabilities have been identified in HP-UX running the Veritas Enterprise Administrator (VEA), which comes bundled with VxVM. The vulnerabilities could be exploited remotely to create a Denial of Service (DoS) or execute arbitrary code.
References: CVE-2011-0547, ZDI-CAN-1110, ZDI-CAN-1111.


Install patch PHCO_42316 or subsequent.

See Also


Plugin Details

Severity: Critical

ID: 56834

File Name: hpux_PHCO_42316.nasl

Version: 1.15

Type: local

Published: 3/6/2012

Updated: 1/11/2021

Risk Information


Risk Factor: Medium

Score: 6.7


Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 8/11/2011

Vulnerability Publication Date: 5/31/2011

Reference Information

CVE: CVE-2011-0546, CVE-2011-0547

BID: 49014, 47824

HP: emr_na-c02962262, HPSBUX02700, SSRT100506

IAVB: 2011-B-0108