Next Page >>
operations
welcome the opportunity to review and assist in product reports.
Additional Information
======================
These vulnerabilities affect the following Cisco UVC Linux operating
system products:
* Cisco Unified Videoconferencing 5110 System
* Cisco Unified Videoconferencing 5115 System
Windows Virtual PC and Microsoft Virtual PC 2007 are system
virtualization desktop applications from Microsoft used to run one or
many virtual hosts on a single physical system. Windows 7 relies on
Virtual PC technology to implement the backward compatibility XP Mode
for legacy Windows applications. Using XP Mode, Windows 7 users can run
Windows applications on a virtualized Windows XP SP3 operating system
directly from the Windows 7 desktop but in doing so they may be
inadvertently increasing their risk due to a bug that makes standard
Windows anti-exploitation mechanisms ineffective.
A vulnerability found in the memory management of the Virtual Machine
Unpack the archive and follow the instructions in the README.txt file.
OV NNM v7.53
Operating System - HP-UX (IA)
Required Patch - No patch to base NNM v7.53 is required
Archive File - ovas_7.53_hotfix.tar
Archive File MD5 Sum - f9e3a993b3e274fd98e2cea6e255a051
Operating System - HP-UX (PA)
3. Unpack the archive and follow the instructions in the Readme.txt file.
OV NNM v7.53
Operating System - HP-UX (IA)
Required Patch - No patch to base NNM v7.53 is required
Archive File - SSRT080024_NNM7.53.tar
Archive File MD5 Sum - a3a224d2bd9d5461ea9908c7388ff116
Operating System - HP-UX (PA)
Unpack the archive and follow the instructions in the Readme.txt file.
OV NNM v7.53
Operating System - HP-UX (IA)
Required Patch - No patch to base NNM v7.53 is required
Archive File - SSRT080024-2_NNM7.53.tar
Archive File MD5 Sum - 50ea3050712e789027cebbe0fefd81e7
Operating System - HP-UX (PA)
To determine the Cisco IOS Software release that is running on a Cisco
product, administrators can log in to the device and issue the "show
version" command to display the system banner. The system banner
confirms that the device is running Cisco IOS Software by displaying
text similar to "Cisco Internetwork Operating System Software" or "Cisco
IOS Software." The image name displays in parentheses, followed by
"Version" and the Cisco IOS Software release name. Other Cisco devices
do not have the "show version" command or may provide different output.
The following example shows output from a device that runs a Cisco
Subscribe: To initiate a subscription to receive future HP Security Bulletins via Email:
http://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA&langcode=USENG&jumpid=in_SC-GEN__driverITRC&topiccode=ITRC
On the web page: ITRC security bulletins and patch sign-up
Under Step1: your ITRC security bulletins and patches
-check ALL categories for which alerts are required and continue.
Under Step2: your ITRC operating systems
-verify your operating system selections are checked and save.
To update an existing subscription: http://h30046.www3.hp.com/subSignIn.php
Log in on the web page: Subscriber's choice for Business: sign-in.
On the web page: Subscriber's Choice: your profile summary - use Edit Profile to update appropriate sections.
IMPACT
------
By exploiting either of the VMware flaws described in this document,
user-mode code executing in a virtual machine may gain kernel
privileges within the virtual machine, dependent upon the guest
operating system. The flaws have been proven exploitable on x64
versions of Windows, and they have produced potentially exploitable
crashes on x64 versions of *BSD. The Linux kernel does not allow
exploitation of these flaws on x64 versions of Linux.
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System - HP-UX (IA)
Resolved in Patch - PHSS_38783 or subsequent
Operating System - HP-UX (PA)
Resolved in Patch - PHSS_38782 or subsequent
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
===========
Operating System - HP-UX (IA)
Resolved in Patch - PHSS_38148 or subsequent
Operating System - HP-UX (PA)
Resolved in Patch - PHSS_38147 or subsequent
Note: The patches are not available from the HP IT Resource Center (ITRC).
OV NNM v7.53
Operating System - HP-UX (IA)
Resolved in Patch - PHSS_38783 or subsequent
Operating System - HP-UX (PA)
Resolved in Patch - PHSS_38782 or subsequent
IMPACT
------
By exploiting the VMware flaw described in this document, user-mode
code executing in a virtual machine may gain kernel privileges within
the virtual machine, dependent upon the guest operating system. The
flaw has been proven exploitable on x64 versions of Windows, and it
has produced potentially exploitable crashes on x64 versions of *BSD.
The Linux kernel does not allow exploitation of the flaws on x64
versions of Linux.
- ------------------------------------------------------------------------
1. Summary
VMware addresses a in-guest privilege escalation on 64-bit guest
operating systems in ESX, ESXi, and previously released versions of
our hosted product line. Updated VMware VirtualCenter Update 3
addresses potential information disclosure and updates Java JRE
packages.
2. Relevant releases
RESOLUTION
HP has provided a hotfix to resolve this vulnerability. Please contact HP Support and request the applicable hotfix from the following url:
http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1
The url above contains hotfixes for several operating systems. HP OpenView Operations Manager for Windows v7.5 customers running the OVO add-on module for the OVO-BAC integration only need the WINDOWS XPL hotfix: HPOvXpl-03.10.040-WinNT4.0-release.msi
PRODUCT SPECIFIC INFORMATION
HISTORY
Version: 1 (rev.1) - 7 August 2007 Initial release
HP has made a patches available to resolve the vulnerability for HP Operations Agent v11.00 and v11.01. HP has made hotfixes available to resolve the vulnerability for HP Performance Agent v4.73 and v5.0. The patches are available here: http://support.openview.hp.com/selfsolve/patches The hotfixes can be obtained by contacting the normal HP Services support channel.
For HP Operations Agent v11.00 and v11.01
Operating System
Patch
AIX
OAAIX_00003
Cisco Security Advisories and Responses published by Cisco PSIRT. The
new location is:
http://tools.cisco.com/security/center/publicationListing
You can also navigate to this page from the Cisco
Products and Services menu of the Cisco Security Intelligence
Operations (SIO) Portal. Following this transition, new Cisco Security
Advisories and Responses will be published to the new location.
Although the URL has changed, the content of security documents and
the vulnerability policy are not impacted. Cisco will continue to
disclose security vulnerabilities in accordance with the published
Security Vulnerability Policy.
vulnerability to security-alert@hp.com
HP Data Protector Express 'Hot Fix' (Build 47065) for version 3.5 SP2 is supported on the following:
Operating System
Version
Windows Operating Systems
Microsoft Windows Unified Data Storage Server (incl. R2)
3. Problem Description
a. Denial of service guest to host vulnerability in a virtual device
A vulnerability in a guest virtual device driver, could allow a
guest operating system to crash the host and consequently any
virtual machines on that host.
VMware would like to thank Andrew Honig of the Department of
Defense for reporting this issue.
a. Windows-based VMware Tools Unsafe Library Loading vulnerability
A vulnerability in the way VMware libraries are referenced allows
for arbitrary code execution in the context of the logged on user.
This vulnerability is present only on Windows Guest Operating
Systems.
In order for an attacker to exploit the vulnerability, the attacker
would need to lure the user that is logged on a Windows Guest
Operating System to click on the attacker's file on a network
a. Windows-based VMware Tools Unsafe Library Loading vulnerability
A vulnerability in the way VMware libraries are referenced allows
for arbitrary code execution in the context of the logged on user.
This vulnerability is present only on Windows Guest Operating
Systems.
In order for an attacker to exploit the vulnerability, the attacker
would need to lure the user that is logged on a Windows Guest
Operating System to click on the attacker's file on a network
I have run across a design issue in VMware's scripting automation API that
diminishes VM guest/host isolation in such a manner to facilitate privilege
escalation, spreading of malware, and compromise of guest operating systems.
VMware's scripting API allows a malicious script on the host machine to
execute programs, open URLs, and perform other privileged operations on any
guest operating system open at the console, without requiring any
credentials on the guest operating system. Furthermore, the script can
execute programs even if you lock the desktop of the guest OS.
HP has made a patches available to resolve the vulnerability for HP Operations Agent v11.00. HP has made hotfixes available to resolve the vulnerability for HP Performance Agent v4.73 and v5.0. The patches are available here: http://support.openview.hp.com/selfsolve/patches The hotfixes can be obtained by contacting the normal HP Services support channel.
For HP Operations Agent v11.00
Operating System
Patch
AIX
OAAIX_00003
HP has made patches available to resolve the vulnerabilities.
The patches are available from http://support.openview.hp.com/selfsolve/patches
Operating System - AIX
Patch - HPSM_00019 or subsequent
Operating System - HP-UX (IA)
Patch - HPSM_00020 or subsequent
=========================================================================
HP Data Protector Express 'Hot Fix' (Build 47065) for version 3.5 SP2 is supported on the following:
=========================================================================
=====================
Windows Operating Systems
=====================
Microsoft Windows Unified Data Storage Server (incl. R2)
Microsoft Windows Server 2003 Enterprise / Standard Editions (incl. R2)
Microsoft Windows Storage Server 2003 (incl. R2)
Microsoft Windows 2000 Server / Advanced Server SP4
2. set Product version="All Versions"
3. enter the Patch from the table below into the "Optional: Enter keyword(s) or phrases" window
4. select "Search"
HP Select Identity Software Version - v4.00
Operating Systems - Windows 2003 Server, and Red Hat Linux AS3
Patch - HPSI patch 4.00.013
HP Select Identity Software Version - v4.01
Operating Systems - HP-UX, Windows 2003 Server, Red Hat Linux AS3, and Solaris
Patch - HPSI patch 4.01.015
The Hewlett-Packard Company thanks an anonymous researcher working with the iDefense VCP for reporting this vulnerability to security-alert@hp.com.
RESOLUTION
HP has made the following patches available to resolve the vulnerability. The patches can be downloaded from http://itrc.hp.com
Each patch is to be installed on the operating system listed in the "System to be Patched" column. Each patch is for communication with the operating system listed in the "Client System" column.
Patch (or subsequent) System to be Patched Client System
PHSS_37397 HP-UX PA HP-UX PA
PHSS_37399 HP-UX PA HP-UX IA
HP has made the following patches available to resolve the vulnerability. The patches can be downloaded from http://itrc.hp.com
Patches are not yet available for all client systems. For client systems without resolution patches available, HP has provided a hotfix to resolve this vulnerability. Please contact HP Support and request the applicable hotfixes from the following url:
http://quixy.deu.hp.com/hotfix/d.php?P=lcore&N=SSRT061260+OpenView+Shared+Trace+Service&V=2.1
Each patch is to be installed on the operating system listed in the "System to be Patched" column. Each patch is for communication with the operating system listed in the "Client System" column.
Patch (or subsequent) System to be Patched Client System
Install hotfix HP-UX PA HP-UX PA
Install hotfix HP-UX PA HP-UX IA
Install hotfix HP-UX PA Solaris
and navigating through the tree to "Routing and Switching
Management > CiscoWorks LAN Management Solution Products > CiscoWorks
Common Services Software > CiscoWorks Common Services Software 3.3"
and then the choice of Solaris or Windows, depending on your
operating system.
When considering software upgrades, also consult:
http://www.cisco.com/go/psirt
Subscribe: To initiate a subscription to receive future HP Security Bulletins via Email:
http://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA&langcode=USENG&jumpid=in_SC-GEN__driverITRC&topiccode=ITRC
On the web page: ITRC security bulletins and patch sign-up
Under Step1: your ITRC security bulletins and patches
-check ALL categories for which alerts are required and continue.
Under Step2: your ITRC operating systems
-verify your operating system selections are checked and save.
To update an existing subscription: http://h30046.www3.hp.com/subSignIn.php
Log in on the web page: Subscriber's choice for Business: sign-in.
On the web page: Subscriber's Choice: your profile summary - use Edit Profile to update appropriate sections.
in HP Customer Notice: HPSN-2008-002
The Hewlett-Packard Company thanks AbdulAziz Hariri of Insight Technologies along with TippingPoint.s Zero Day Initiative for reporting this vulnerability to security-alert@hp.com
HP Data Protector Express 'Hot Fix' (Build 56936) for version 3.5 SP2 is supported on the following:
Windows Operating Systems
Version
Microsoft Windows Unified Data Storage Server (incl. R2)
Microsoft Windows Server 2003 Enterprise / Standard Editions (incl. R2)
Next Page>>
|
