You are here

U-137: HP Performance Manager Unspecified Bug Lets Remote Users Execute Arbitrary Codes

March 30, 2012 - 9:15am

Addthis

PROBLEM:

HP Performance Manager Unspecified Bug Lets Remote Users Execute Arbitrary Codes

PLATFORM:

HP-UX B.11.31
HP-UX B.11.23

ABSTRACT:

A remote user can execute arbitrary code on the target system.

REFERENCE LINKS:

HP Support Document ID: c03255321
SecurityTracker Alert ID: 1026869
CVE-2012-0127

IMPACT ASSESSMENT:

High

Discussion:

A potential security vulnerability has been identified with HP Performance Manager running on HP-UX, Linux, Solaris, and Windows. The vulnerability could be exploited remotely to execute arbitrary code and to create a Denial of Service (DoS).

Impact:

A remote user can execute arbitrary code on the target system. Remote execution of arbitrary code, Denial of Service (DoS)

Solution:

HP has provided the following patches to resolve the vulnerability. The patches are available, Sign In

Addthis