HP Performance Insight Bugs with Sybase Database Let Remote Users Deny Service and Take Full Control of the Target System
HP Performance Insight v5.31, v5.40 and v5.41 running on HP-UX, Solaris, Linux, and Windows and using Sybase as the database
Two vulnerabilities were reported in HP Performance Insight.
Potential security vulnerabilities have been identified with HP Performance Insight when using Sybase as the database. The vulnerabilities could be remotely exploited to allow remote denial of service (DoS) and loss of data.
A remote user can take full control of the target system.
A remote user can cause denial of service conditions.
HP has provided a hotfix SSRT100924 for HP Performance Insight using Sybase to resolve this issue.