‘HP Insight Control for Linux Multiple Vulnerabilities’

Summary

Execution of Arbitrary Code, Denial of Service and Unauthorized Access vulnerabilities were identified on HP Insight Control for Linux.’

Credit:

‘The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02286083


Details

Vulnerable Systems:
 * HP Insight Control for Linux 6.0 and previous versions

Immune Systems:
 * HP Insight Control for Linux v6.1

Potential security vulnerabilities have been identified with Insight Control for Linux (IC-LX). The vulnerabilities could be remotely exploited to allow execution of arbitrary code, remote Denial of Service (DoS), and remote unauthorized access.

Patch Availability:
The updated kit can be downloaded as follows:
Browse to http://www.hp.com/go/ic-lx
and click on Software Downloads.

CVE Information:
CVE-2009-0692
CVE-2007-5497
CVE-2007-2452
CVE-2010-0001
CVE-2010-1129
CVE-2008-5110

Disclosure Timeline:
2010-07-12: Release Date
2010-07-13: Last Updated’

Categories: UNIX