‘HP System Management Homepage (SMH) for Linux and Windows Information Disclosure Vulnerability’

Summary

A potential security vulnerability has been identified with HP System Management Homepage (SMH) for Linux and Windows.’

Credit:

‘The information has been provided by Tony Fogarty .
The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02514929


Details

Vulnerable Systems:
 * HP System Management Homepage for Linux (x86) prior to v6.2
 * HP System Management Homepage for Linux (AMD64/EM64T) prior to v6.2
 * HP System Management Homepage for Windows prior to v6.2

Immune Systems:
 * HP System Management Homepage for Linux (x86) v6.2
 * HP System Management Homepage for Linux (AMD64/EM64T) v6.2
 * HP System Management Homepage for Windows v6.2

The vulnerability could be exploited remotely resulting in disclosure of sensitive information.

CVE Information:
CVE-2010-3284

Disclosure Timeline:
Release Date: 2010-09-22
Last Updated: 2010-09-22′

Categories: UNIX