(CIAC Issues Advisory L-110) Re: HP OpenView Event Correlation Services (ECS)
|
|
SecurityTracker Alert ID: 1001979 |
|
SecurityTracker URL: http://securitytracker.com/id/1001979
|
|
CVE Reference:
GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Jul 11 2001
|
Impact:
Disclosure of user information, Modification of user information
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): HP9000 Series 700/800 running HP-UX releases 10.10, 10.20 and 11.00, plus Solaris 2.5 and 2.6
|
Description:
HP reported a vulnerability in their Event Correlation Services (ECS) daemon (ecsd) for OpenView that allows unauthorized user access privileges.
The ecsd process reportedly allows remote users to obtain unauthorized access privileges. No futher details were provided by HP.
|
Impact:
A remote user could gain user privileges on the ECS application.
|
Solution:
The vendor has released a patch.
|
Vendor URL: www.hp.com/ (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
UNIX (HP/UX), UNIX (Solaris - SunOS)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Wed, 11 Jul 2001 11:34:09 -0700 (PDT)
Subject: CIAC Bulletin L-110 HP Open View Event COrrelation Services Vulnerability
|
[For Public Release]
-----BEGIN PGP SIGNED MESSAGE-----
__________________________________________________________
The U.S. Department of Energy
Computer Incident Advisory Center
___ __ __ _ ___
/ | /_\ /
\___ __|__ / \ \___
__________________________________________________________
INFORMATION BULLETIN
HP Open View Event Correlation Services Vulnerability
[Hewlett-Packard Company Security Bulletin #0158]
July 10, 2001 22:00 GMT Number L-110
______________________________________________________________________________
PROBLEM: A vulnerability in HP Open View Net Node Manager's Event
Correlation Service daemon ecsd
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.10, 10.20 and
11.00, plus Solaris 2.5 and 2.6
DAMAGE: Allows unauthorized access privilege for users
SOLUTION: Apply the appropriate patch as described below
______________________________________________________________________________
VULNERABILITY The risk is MEDIUM: Local user could gain root access
ASSESSMENT:
______________________________________________________________________________
[****** Start Hewlett-Packard Bulletin ******]
http://www.ciac.org/ciac/bulletins/l-110.shtml
[****** End Hewlett-Packard Bulletin ******]
-----BEGIN PGP SIGNATURE-----
Version: 4.0 Business Edition
iQCVAwUBO0yb3LnzJzdsy3QZAQE9swP+MahTkupLl2niFggg6LVfk7d3P0JjbaUA
UG6cUifWrVPaxZeopjRbdXFhBHEs++BJJxUE/JLofLkeKgdr47m5MT1z562S5VAT
YS3XEU+WVbRjn0yOQNuCagFEOTjNZEC3hq19aoom/rSK22hRcef14vxOGEa9sGvk
BH6DjxWSsVQ=
=SvTV
-----END PGP SIGNATURE-----
-+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+
This message was posted through the FIRST mailing list server. If you
wish to unsubscribe from this mailing list, send the message body of
"unsubscribe first-info" to first-majordomo@FIRST.ORG
-+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+
|
|
