<< Previous Next >>
operating system
4. ovstop -c
5. Follow the instructions in the README.txt file
6. ovstart -c
OV NNM v7.53
Operating System
Required Patch
HP-UX (IA)
PHSS_39246 or subsequent
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
===========
Operating System
Resolved in Patch
HP-UX (IA)
PHSS_38489 or subsequent
1. Download the hotfix
Download the appropriate hotfix file from ftp.usa.hp.com. Optionally verify the SHA-1 sum.
Operating System
Hotfix File
SHA-1 Sum
HP-UX, Linux, Solaris
SSRT100158.tar
5 .Follow the instructions in the README.txt file
5. ovstart -c
OV NNM v7.53
============
Operating System
Required Patch
HP-UX (IA)
PHSS_39246 or subsequent
5. Follow the instructions in the README.txt file
6. ovstart -c
OV NNM v7.53
===========
Operating System
Required Patch
HP-UX (IA)
PHSS_39246 or subsequent
4. ovstop -c
5. Follow the instructions in the README.txt file
6. ovstart -c
OV NNM v7.53
Operating System
Required Patch
Archive File
Archive File MD5 Sum
HP-UX (IA)
HP has made a hotfixes available to resolve this vulnerability for NNMi v8.1x. The hotfixes can be obtained by contacting the normal HP Services support channel.
For NNMi 9.0x
Operating System
Patch
HP-UX
PHSS_41982 or subsequent
The patches are available from http://itrc.hp.com
OV NNM v7.53
============
Operating System
Resolved in Patch
Windows
NNM_01193 or subsequent
1. Download the hotfix
Download the appropriate hotfix file from ftp.usa.hp.com. Optionally verify the SHA-1 sum.
Operating System
Hotfix File
SHA-1 Sum
HP-UX, Linux, Solaris
SSRT100158.tar
HP has made two methods available to resolve the vulnerability for 8.1x. Customers can request hotfixes or use the FPupdater tool.
For NNMi 9.0x
Operating System
Patch
HP-UX
PHSS_41982 or subsequent
Note: Before installing the hotfix insure that the following patches have been installed.
NNMi v9.0x Required Patches
Operating System
Patch
HP-UX
PHSS_41540
Multiple vulnerabilities exist in the Cisco Application Networking
Manager (ANM) and Cisco Application Control Engine (ACE) Device
Manager applications. These vulnerabilities are independent of each
other. Successful exploitation of these vulnerabilities may result in
unauthorized system or host operating system access.
This security advisory identifies the following vulnerabilities:
* ACE Device Manager and ANM invalid directory permissions
vulnerability
The archive files are available from: ftp://ss080033:s080033@hprc.external.hp.com/
OV NNM v7.53
===========
Operating System
Resolved in Patch
HP-UX (IA)
PHSS_38489 or subsequent
a. Windows-based VMware Tools Unsafe Library Loading vulnerability
A vulnerability in the way VMware libraries are referenced allows
for arbitrary code execution in the context of the logged on user.
This vulnerability is present only on Windows Guest Operating
Systems.
In order for an attacker to exploit the vulnerability, the attacker
would need to lure the user that is logged on a Windows Guest
Operating System to click on the attacker's file on a network
share. This file could be in any file format. The attacker will
The patches are available from http://support.openview.hp.com/selfsolve/patches
OV NNM v7.53
Operating System
Required Patch
HP-UX (IA)
PHSS_39246 or subsequent
The patches are available from http://support.openview.hp.com/selfsolve/patches
OV NNM v7.53
Operating System
Patch
HP-UX (IA)
PHSS_39640 or subsequent
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System
Patch
HP-UX (IA)
PHSS_40375 or subsequent
The patches are available from http://support.openview.hp.com/selfsolve/patches
OV NNM v7.53
Operating System
Patch
HP-UX (IA)
PHSS_40375 or subsequent
options to perform an extensive back-end database management system
fingerprint, retrieve DBMS session user and database, enumerate users,
password hashes, privileges, databases, dump entire or user's
specified DBMS tables/columns, run his own SQL statement, read or
write either text or binary files on the file system, execute
arbitrary commands on the operating system, establish an out-of-band
stateful connection between the attacker box and the database server
via Metasploit payload stager, database stored procedure buffer
overflow exploitation or SMB relay attack and more.
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System
Patch
HP-UX (IA)
PHSS_39640 or subsequent
a. Windows-based VMware Tools Unsafe Library Loading vulnerability
A vulnerability in the way VMware libraries are referenced allows
for arbitrary code execution in the context of the logged on user.
This vulnerability is present only on Windows Guest Operating
Systems.
In order for an attacker to exploit the vulnerability, the attacker
would need to lure the user that is logged on a Windows Guest
Operating System to click on the attacker's file on a network
share. This file could be in any file format. The attacker will
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System
Patch
HP-UX (IA)
PHSS_40375 or subsequent
The patches are available from http://support.openview.hp.com/selfsolve/patches
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System
Required Patch
HP-UX (IA)
PHSS_39246 or subsequent
For SiteScope v10.x
Upgrade to Sitescope v10.14 and install the appropriate patch.
Operating System
Patch
Document ID
Linux
SIS_00145
The patches are available from http://support.openview.hp.com/selfsolve/patches
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System
Required Patch
HP-UX (IA)
PHSS_39246 or subsequent
The patches are available from http://support.openview.hp.com/selfsolve/patches
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System
Required Patch
HP-UX (IA)
PHSS_39246 or subsequent
HP has made a patches available to resolve these vulnerabilities for NNMi 9.0x. HP has made hotfixes available to resolve these vulnerabilities for NNMi 9.1x. The patches are available here: http://support.openview.hp.com/selfsolve/patches The hotfixes can be obtained by contacting the normal HP Services support channel.
For NNMi 9.0x
Operating System
Patch
HP-UX
PHSS_42328
The patches are available from http://support.openview.hp.com/selfsolve/patches
OV NNM v7.53
Operating System
Patch
HP-UX (IA)
PHSS_40708 or subsequent
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System
Required Patch
HP-UX (IA)
PHSS_39246 or subsequent
4.- TESTING ENVIRONMENT
========================================================
4.1.- Management Server
Operating System: CentOS 4.6 (Kernel 2.6.18-92.el5)
Management Server: DLP 5.2.1050
4.2.- Endpoints
Operating System: Windows VistaTM Business SP1
DLP Agent: 5.2.1053 (Patch applied)
<<Previous Next>>
|
