HP Small Form Factor or Microtower PC Flaw in Broadcom NIC Firmware Lets Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1023710 |
|
SecurityTracker URL: http://securitytracker.com/id/1023710
|
|
CVE Reference:
CVE-2010-0104
(Links to External Site)
|
Date: Mar 16 2010
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
|
Description:
A vulnerability was reported in certain HP Small Form Factor or Microtower PCs. A remote user can execute arbitrary code on the target system.
HP Small Form Factor and Microtower PCs running Broadcom Integrated NIC Management Firmware versions prior to v1.40.0.0 and prior to v8.08 are affected.
|
Impact:
A remote user can execute arbitrary code on the target system.
|
Solution:
The vendor has issued a fix (softpaq SP47557), available at:
ftp://ftp.hp.com/pub/softpaq/sp47501-48000/sp47557.exe
The vendor's advisory is available at:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02048471
|
Vendor URL: h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02048471 (Links to External Site)
|
Cause:
Not specified
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 16 Mar 2010 01:19:04 +0000
Subject: HPSBGN02511 SSRT100022 rev.1 - HP Small Form Factor or Microtower PC with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code
|
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02048471
CVE-2010-0104
|
|
