Power Manager
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02239581
Version: 1
HPSBMA02545 SSRT100139 rev.1 - HP Power Manager (HPPM) Running on Linux and Windows, Remote Execution of Arbitrary Code
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-12-15
Last Updated: 2010-12-15
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01905743
Version: 2
HPSBMA02474 SSRT090107 rev.2 - HP Power Manager, Remote Execution of Arbitrary Code
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2009-11-12
Last Updated: 2010-01-19
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02711131
Version: 1
HPSBMA02629 SSRT100381 rev.1 - HP Power Manager (HPPM) Running on Linux and Windows, Cross Site Request Forgery (CSRF)
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2011-02-07
Last Updated: 2011-02-07
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02711131
Version: 3
HPSBMA02629 SSRT100381 rev.3 - HP Power Manager (HPPM) Running on Linux and Windows, Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS)
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2011-02-07
Last Updated: 2011-03-10
The example I put forth might have been a bad one (given that it relies on
an additional piece of code to be installed on a target machine), but
there's probably more to this issue than I can deduce. I'll let those more
versed in that area of security figure it out. As a side note, check out
some of the conversations on the Linux Kernel mailing list about power
management and security. Interesting stuff.
--
Abe Getchell
me@abegetchell.com
https://abegetchell.com/
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01971741
Version: 1
HPSBMA02485 SSRT090252 rev.1 - HP Power Manager, Remote Execution of Arbitrary Code
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-01-19
Last Updated: 2010-01-19
-----Original Message-----
From: Abe Getchell [mailto:me@abegetchell.com]
Sent: Sunday, July 20, 2008 12:32 PM
To: 'Thor (Hammer of God)'; Jim Harrison; 'Johan Beisser'
Cc: bugtraq@securityfocus.com
Subject: RE: Windows Vista Power Management & Local Security Policy
So, you guys don't think it's an issue that power management in Vista
(apparently) has a pass to bypass local security policy?
--
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01905743
Version: 1
HPSBMA02474 SSRT090107 rev.1 - HP Power Manager, Remote Execution of Arbitrary Code
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2009-11-04
Last Updated: 2009-11-04
======================================================================
Secunia Research 20/01/2009
- HP Power Manager "formExportDataLogs" Directory Traversal -
======================================================================
Table of Contents
Affected Software....................................................1
======================================================================
Secunia Research 20/01/2010
- HP Power Manager "formExportDataLogs" Buffer Overflow -
======================================================================
Table of Contents
Affected Software....................................................1
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01905743
Version: 1
HPSBMA02474 SSRT090107 rev.1 - HP Power Manager, Remote Execution of Arbitrary Code
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2009-11-04
Last Updated: 2009-11-04
So, you guys don't think it's an issue that power management in Vista
(apparently) has a pass to bypass local security policy?
--
Abe Getchell
me@abegetchell.com
https://abegetchell.com/
> -----Original Message-----
> From: Thor (Hammer of God) [mailto:thor@hammerofgod.com]
> -----Original Message-----
> From: Abe Getchell [mailto:me@abegetchell.com]
> Sent: Saturday, July 19, 2008 12:33 AM
> To: 'Jim Harrison'; bugtraq@securityfocus.com
> Subject: RE: Windows Vista Power Management & Local Security Policy
>
> As stated in my original e-mail to the list, I definitely don't think
> that
> this is a security vulnerability in a traditional sense. I completely
> agree
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02564294
Version: 1
HPSBMA02603 SSRT100319 rev.1 - HP Insight Control Power Management for Windows, Remote Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF)
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-10-25
Last Updated: 2010-10-25
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02282361
Version: 1
HPSBMA02549 SSRT090158 rev.1 - HP Insight Control Power Management for Windows, Local Unauthorized Access to Data, Denial of Service (DoS)
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-07-12
Last Updated: 2010-07-12
> -----Original Message-----
> From: Jim Harrison [mailto:Jim@isatools.org]
> Sent: Saturday, July 19, 2008 1:36 AM
> To: 'me@abegetchell.com'; bugtraq@securityfocus.com
> Subject: RE: Windows Vista Power Management & Local Security Policy
>
> Abe,
>
> Other than a denial-of-service from the console (is the power switch
> now a security vuln, too?), what can you do with this bug? It's
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02282361
Version: 2
HPSBMA02549 SSRT090158 rev.2 - HP Insight Control Power Management for Windows, Local Unauthorized Read Access to Data
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-07-12
Last Updated: 2010-07-27
-----Original Message-----
From: Abe Getchell [mailto:me@abegetchell.com]
Sent: Thursday, July 17, 2008 7:39 PM
To: bugtraq@securityfocus.com
Subject: Windows Vista Power Management & Local Security Policy
When the security option "Shutdown: Allow system to be shutdown without
having to log on" (in the local security policy) is set to "Disable", and
the power management setting "When I press the power button" is set to "Shut
Down", it is possible for an unauthenticated user to press the power button
ZDI-09-081: Hewlett-Packard Power Manager Administration Web Server Stack Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-081
November 5, 2009
-- CVE ID:
CVE-2009-2685
-- Affected Vendors:
Hewlett-Packard
When the security option "Shutdown: Allow system to be shutdown without
having to log on" (in the local security policy) is set to "Disable", and
the power management setting "When I press the power button" is set to "Shut
Down", it is possible for an unauthenticated user to press the power button
at the Windows logon screen and gracefully shutdown the system. The
explanation of this security option, taken from the local security policy,
is as follows:
"Shutdown: Allow system to be shut down without having to log on
Correct. Power management in Windows Vista is apparently given a pass to
bypass local security policy, which is a bad thing, and sets a bad
precedence. I will leave it to others to exploit this security issue, given
that I know little about the programmatic aspect of power management in
Windows. There are people out there much more capable than me who, if they
feel it warranted, can research the issue further. I don't consider it, as
Jim Harrison would say, "wasting your time chasing things that 'might lead
to cats & dogs living together in sin'", but rather "security research" and
"sharing information". I don't consider Jim's reaction surprising at all,
though, as he works for Microsoft.
-----Original Message-----
From: Abe Getchell [mailto:me@abegetchell.com]
Sent: Friday, 18 July 2008 12:39 PM
To: bugtraq@securityfocus.com
Subject: Windows Vista Power Management & Local Security Policy
> When the security option "Shutdown: Allow system to be shutdown without
having to log on" (in the local security policy) is set to "Disable", and
> the power management setting "When I press the power button" is set to
"Shut Down", it is possible for an unauthenticated user to press the power
Abe Getchell wrote:
> When the security option "Shutdown: Allow system to be shutdown without
> having to log on" (in the local security policy) is set to "Disable", and
> the power management setting "When I press the power button" is set to "Shut
> Down", it is possible for an unauthenticated user to press the power button
> at the Windows logon screen and gracefully shutdown the system.
It is also possible for the unauthenticated user to unplug the power cord.
What would you like them to do about that?
________________________________________
From: James C. Slora Jr. [james.slora@phra.com]
Sent: Tuesday, July 22, 2008 8:15 AM
To: bugtraq@securityfocus.com
Subject: RE: Windows Vista Power Management & Local Security Policy
So is this the bottom line?
This is a security mechanism bug that might lead to privilege escalation
for arbitrary user processes. The OP has left it for others to determine
|
