Home    |    View Topics    |    Search    |    Contact Us    |   



Category:   Application (Generic)  >   HPE System Management Homepage Vendors:   HPE
HP System Management Homepage May Not Properly Complete Security Updates
SecurityTracker Alert ID:  1018696
SecurityTracker URL:
CVE Reference:   CVE-2007-4931   (Links to External Site)
Updated:  Apr 18 2008
Original Entry Date:  Sep 14 2007
Impact:   Modification of system information
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerability was reported in HP System Management Homepage. The system may not completely apply security relevant updates.

When HP System Management Homepage (SMH) for Windows is updated while running HP Version Control Agent (VCA) or Version Control Repository Manager (VCRM), the previous OpenSSL software may remain active in memory until the system is rebooted.

Impact:   The system may not completely apply OpenSSL updates.
Solution:   The vendor indicates that customers should always reboot a Windows system running SMH and VCA or VCRM immediately after installing an update to SMH.

The HP advisory is available at:

Vendor URL: (Links to External Site)
Cause:   State error
Underlying OS:  Windows (Any)

Message History:   None.

 Source Message Contents

[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, LLC