‘HP Tru64 UNIX Running NTP Denial of Service (DoS) Vulnerability’

Summary

A potential security vulnerability has been identified on the HP Tru64 Operating System when running NTP Server.’

Credit:

‘The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01961950


Details

Vulnerable Systems:
 * HP Tru64 UNIX v 5.1B-5 (BL28) running NTP
 * HP Tru64 UNIX v 5.1B-4 (BL27) running NTP

The vulnerability could be remotely exploited to create a Denial of Service (DoS).

Patch Availability:
HP is releasing the following setld-based patch kits to resolve the vulnerability.

HP Tru64 UNIX v 5.1B-4 PK6 (BL27)
T64KIT1001787-V51BB27-ES-20100817
http://www.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT1001787-V51BB27-ES-20100817

HP Tru64 UNIX v 5.1B-5 PK7 (BL28)
T64KIT1001786-V51BB28-ES-20100816
http://www13.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT1001786-V51BB28-ES-20100816

CVE Information:
CVE-2009-3563

Disclosure Timeline:
Release Date: 2010-10-04
Last Updated: 2010-10-04′

Categories: UNIX