‘HP-UX Running Threaded Processes Denial of Service Vulnerability’

Published on December 30th, 2010
Summary

A potential security vulnerability has been identified with HP-UX running threaded processes.’

Credit:

‘The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02586517


Details

Vulnerable Systems:
 * HP-UX B.11.11 running threaded processes.
 * HP-UX B.11.23 running threaded processes.
 * HP-UX B.11.31 running threaded processes.

The vulnerability could be exploited remotely to create a Denial of Service (DoS).

Patch Availability:
HP has provided the following patches to resolve this vulnerability. For more information see: https://www.hp.com/go/swa
B.11.11 (11i v1) – PHKL_39133 or subsequent
B.11.23 (11i v2) – PHKL_39899 or subsequent
B.11.31 (11i v3) – PHKL_40944 or subsequent

CVE Information:
CVE-2010-4108

Disclosure Timeline:
2010-12-06 – Release Date
2010-12-06 – Last Updated’

Categories: UNIX
Tags:

Related Posts

UNIX

‘ProFTPD Response Pool Use-After-Free Code Execution Vulnerability’

'This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the ProFTPd server.'

UNIX

‘Insight Control for Linux Multiple Vulnerabilities’

'Remote unauthorized elevation of privilege, execution of arbitrary code, encryption downgrade, information disclosure and Denial of Service (DoS) vulnerabilities were identified in Insight Control for Linux.'

UNIX

‘HP-UX Running NFS/ONCplus Denial of Service Vulnerability’

'A potential security vulnerability has been identified with NFS/ONCplus running on HP-UX.'