HP Performance Insight Discloses Potentially Sensitive Information to Remote Users
|
|
SecurityTracker Alert ID: 1025416 |
|
SecurityTracker URL: http://securitytracker.com/id/1025416
|
|
CVE Reference:
CVE-2011-1536
(Links to External Site)
|
Date: Apr 20 2011
|
Impact:
Disclosure of system information, Disclosure of user information
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 5.0, 5.1x. 5.2x, 5.3x, 5.4, 5.41, 5.41.002
|
Description:
A vulnerability was reported in HP Performance Insight. A remote user can obtain potentially sensitive information.
No details were provided.
|
Impact:
A remote user can obtain potentially sensitive information.
|
Solution:
The vendor has issued a hotfix (HF04 / QCCR1B88272 hotfix for 5.41.002).
The vendor's advisory is available at:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02790298
|
Vendor URL: h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02790298 (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
Linux (Red Hat Enterprise), UNIX (HP/UX), UNIX (Solaris - SunOS), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 20 Apr 2011 20:28:09 +0000
Subject: HPSBMA02660 SSRT100433 rev.1 - HP Performance Insight Running on HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Access to Sensitive Information
|
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02790298
CVE-2011-1536
|
|
