Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:54:31 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2091444745&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Operating%20System%3A%20HPUX%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Fos%2Fhpux%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2091444745.1338191671.1338191671.1338191671.1%3B%2B__utmz%3D32867617.1338191671.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/112858/HPSBUX02782-SSRT100844.txt http://packetstormsecurity.org/files/112858/HPSBUX02782-SSRT100844.txt http://packetstormsecurity.org/files/112858/HP-Security-Bulletin-HPSBUX02782-SSRT100844.html Fri, 18 May 2012 14:37:40 GMT HP Security Bulletin HPSBUX02782 SSRT100844 - A potential security vulnerability has been identified with HP-UX OpenSSL. This vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 1 of this advisory. http://packetstormsecurity.org/files/112878/sa49229.txt http://packetstormsecurity.org/files/112878/sa49229.txt http://packetstormsecurity.org/files/112878/Secunia-Security-Advisory-49229.html Fri, 18 May 2012 05:24:56 GMT Secunia Security Advisory - HP has issued an update for OpenSSL in HP-UX. This fixes multiple vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. http://packetstormsecurity.org/files/112826/HPSBUX02777-SSRT100854.txt http://packetstormsecurity.org/files/112826/HPSBUX02777-SSRT100854.txt http://packetstormsecurity.org/files/112826/HP-Security-Bulletin-HPSBUX02777-SSRT100854.html Thu, 17 May 2012 21:16:37 GMT HP Security Bulletin HPSBUX02777 SSRT100854 - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities may allow remote Denial of Service (DoS), unauthorized modification and disclosure of information. Revision 1 of this advisory. http://packetstormsecurity.org/files/112788/sa49198.txt http://packetstormsecurity.org/files/112788/sa49198.txt http://packetstormsecurity.org/files/112788/Secunia-Security-Advisory-49198.html Wed, 16 May 2012 03:16:09 GMT Secunia Security Advisory - HP has issued an update for Java in HP-UX. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/112594/HPSBMU02775-SSRT100853-2.txt http://packetstormsecurity.org/files/112594/HPSBMU02775-SSRT100853-2.txt http://packetstormsecurity.org/files/112594/HP-Security-Bulletin-HPSBMU02775-SSRT100853-2.html Thu, 10 May 2012 15:17:23 GMT HP Security Bulletin HPSBMU02775 SSRT100853 2 - Potential security vulnerabilities have been identified with HP Performance Insight for Networks running on HP-UX, Linux, Solaris, and Windows. The vulnerabilities could be exploited remotely resulting in SQL injection, cross site scripting (XSS), and privilege elevation. Revision 2 of this advisory. http://packetstormsecurity.org/files/112586/HPSBMU02775-SSRT100853.txt http://packetstormsecurity.org/files/112586/HPSBMU02775-SSRT100853.txt http://packetstormsecurity.org/files/112586/HP-Security-Bulletin-HPSBMU02775-SSRT100853.html Thu, 10 May 2012 04:13:09 GMT HP Security Bulletin HPSBMU02775 SSRT100853 - Potential security vulnerabilities have been identified with HP Performance Insight for Networks running on HP-UX, Linux, Solaris, and Windows. The vulnerabilities could be exploited remotely resulting in SQL injection, cross site scripting (XSS), and privilege elevation. Revision 1 of this advisory. http://packetstormsecurity.org/files/112446/samhain-3.0.4.tar.gz http://packetstormsecurity.org/files/112446/samhain-3.0.4.tar.gz http://packetstormsecurity.org/files/112446/Samhain-File-Integrity-Checker-3.0.4.html Tue, 01 May 2012 15:43:58 GMT Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris. http://packetstormsecurity.org/files/112151/HPSBUX02768-SSRT100664.txt http://packetstormsecurity.org/files/112151/HPSBUX02768-SSRT100664.txt http://packetstormsecurity.org/files/112151/HP-Security-Bulletin-HPSBUX02768-SSRT100664.html Tue, 24 Apr 2012 17:11:00 GMT HP Security Bulletin HPSBUX02768 SSRT100664 - Potential security vulnerabilities have been identified with HP-UX CIFS-Server (Samba). The vulnerabilities could be exploited remotely to create a cross site request forgery (CSRF) or create a Denial of Service (DoS). Revision 1 of this advisory. http://packetstormsecurity.org/files/112131/sa48943.txt http://packetstormsecurity.org/files/112131/sa48943.txt http://packetstormsecurity.org/files/112131/Secunia-Security-Advisory-48943.html Tue, 24 Apr 2012 06:05:53 GMT Secunia Security Advisory - HP has issued an update for CIFS Server in HP-UX. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks. http://packetstormsecurity.org/files/112059/HPSBUX02761-SSRT100823.txt http://packetstormsecurity.org/files/112059/HPSBUX02761-SSRT100823.txt http://packetstormsecurity.org/files/112059/HP-Security-Bulletin-HPSBUX02761-SSRT100823.html Sat, 21 Apr 2012 00:19:01 GMT HP Security Bulletin HPSBUX02761 SSRT100823 - Potential security vulnerabilities have been identified with HP-UX Running Apache. These vulnerabilities could be exploited remotely to create a Denial of Service (DoS) or to gain a local increase of privilege. Revision 1 of this advisory. http://packetstormsecurity.org/files/111965/sa48851.txt http://packetstormsecurity.org/files/111965/sa48851.txt http://packetstormsecurity.org/files/111965/Secunia-Security-Advisory-48851.html Thu, 19 Apr 2012 05:15:51 GMT Secunia Security Advisory - HP has acknowledged a weakness and some vulnerabilities in HP-UX, which can be exploited by malicious, local users to bypass certain security restrictions and gain escalated privileges and by malicious people to disclose potentially sensitive information and cause a DoS (Denial of Service). http://packetstormsecurity.org/files/111633/HPSBUX02760-SSRT100805.txt http://packetstormsecurity.org/files/111633/HPSBUX02760-SSRT100805.txt http://packetstormsecurity.org/files/111633/HP-Security-Bulletin-HPSBUX02760-SSRT100805.html Fri, 06 Apr 2012 02:42:03 GMT HP Security Bulletin HPSBUX02760 SSRT100805 - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, disclosure of information, and other vulnerabilities. Revision 1 of this advisory. http://packetstormsecurity.org/files/111629/HPSBUX02758-SSRT100774.txt http://packetstormsecurity.org/files/111629/HPSBUX02758-SSRT100774.txt http://packetstormsecurity.org/files/111629/HP-Security-Bulletin-HPSBUX02758-SSRT100774.html Fri, 06 Apr 2012 02:35:50 GMT HP Security Bulletin HPSBUX02758 SSRT100774 - A potential security vulnerability has been identified in HP-UX running DCE. The vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 1 of this advisory. http://packetstormsecurity.org/files/111624/HPSBUX02757-SSRT100779-2.txt http://packetstormsecurity.org/files/111624/HPSBUX02757-SSRT100779-2.txt http://packetstormsecurity.org/files/111624/HP-Security-Bulletin-HPSBUX02757-SSRT100779-2.html Fri, 06 Apr 2012 02:06:18 GMT HP Security Bulletin HPSBUX02757 SSRT100779 2 - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, disclosure of information, and other vulnerabilities. Revision 2 of this advisory. http://packetstormsecurity.org/files/111501/sa48692.txt http://packetstormsecurity.org/files/111501/sa48692.txt http://packetstormsecurity.org/files/111501/Secunia-Security-Advisory-48692.html Tue, 03 Apr 2012 03:49:20 GMT Secunia Security Advisory - HP has issued an update for Java in HP-UX. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/111493/sa48687.txt http://packetstormsecurity.org/files/111493/sa48687.txt http://packetstormsecurity.org/files/111493/Secunia-Security-Advisory-48687.html Tue, 03 Apr 2012 03:48:56 GMT Secunia Security Advisory - A vulnerability has been reported in HP-UX, which can be exploited by malicious people to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/111329/HPSBMU02756-SSRT100596.txt http://packetstormsecurity.org/files/111329/HPSBMU02756-SSRT100596.txt http://packetstormsecurity.org/files/111329/HP-Security-Bulletin-HPSBMU02756-SSRT100596.html Thu, 29 Mar 2012 05:00:57 GMT HP Security Bulletin HPSBMU02756 SSRT100596 - A potential security vulnerability has been identified with HP Performance Manager running on HP-UX, Linux, Solaris, and Windows. The vulnerability could be exploited remotely to execute arbitrary code and to create a Denial of Service (DoS). Revision 1 of this advisory. http://packetstormsecurity.org/files/111315/HPSBUX02755-SSRT100667.txt http://packetstormsecurity.org/files/111315/HPSBUX02755-SSRT100667.txt http://packetstormsecurity.org/files/111315/HP-Security-Bulletin-HPSBUX02755-SSRT100667.html Thu, 29 Mar 2012 04:28:33 GMT HP Security Bulletin HPSBUX02755 SSRT100667 - A potential security vulnerability has been identified with certain HP-UX WBEM components. The vulnerability could be exploited remotely in HP-UX 11.11 and HP-UX 11.23 to gain unauthorized access to diagnostic data. The vulnerability could be exploited locally in HP-UX 11.31 to gain unauthorized access to diagnostic data. Revision 1 of this advisory. http://packetstormsecurity.org/files/111304/HPSBMU02744-SSRT100776-2.txt http://packetstormsecurity.org/files/111304/HPSBMU02744-SSRT100776-2.txt http://packetstormsecurity.org/files/111304/HP-Security-Bulletin-HPSBMU02744-SSRT100776-2.html Thu, 29 Mar 2012 03:54:51 GMT HP Security Bulletin HPSBMU02744 SSRT100776 2 - A potential security vulnerability has been identified with HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows. The vulnerability could be remotely exploited resulting in unauthorized disclosure of information. Revision 2 of this advisory. http://packetstormsecurity.org/files/111418/samhain-3.0.3.tar.gz http://packetstormsecurity.org/files/111418/samhain-3.0.3.tar.gz http://packetstormsecurity.org/files/111418/Samhain-File-Integrity-Checker-3.0.3.html Wed, 28 Mar 2012 17:41:37 GMT Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris. http://packetstormsecurity.org/files/111310/sa48593.txt http://packetstormsecurity.org/files/111310/sa48593.txt http://packetstormsecurity.org/files/111310/Secunia-Security-Advisory-48593.html Wed, 28 Mar 2012 07:55:50 GMT Secunia Security Advisory - A vulnerability has been reported in HP-UX, which can be exploited by malicious, local users or malicious people to bypass certain security restrictions. http://packetstormsecurity.org/files/111257/sa48589.txt http://packetstormsecurity.org/files/111257/sa48589.txt http://packetstormsecurity.org/files/111257/Secunia-Security-Advisory-48589.html Wed, 28 Mar 2012 06:36:02 GMT Secunia Security Advisory - HP has issued an update for Java in HP-UX. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/110541/HPSBMU02744-SSRT100776.txt http://packetstormsecurity.org/files/110541/HPSBMU02744-SSRT100776.txt http://packetstormsecurity.org/files/110541/HP-Security-Bulletin-HPSBMU02744-SSRT100776.html Wed, 07 Mar 2012 23:23:48 GMT HP Security Bulletin HPSBMU02744 SSRT100776 - A potential security vulnerability has been identified with HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows. The vulnerability could be remotely exploited resulting in unauthorized disclosure of information. Revision 1 of this advisory. http://packetstormsecurity.org/files/110540/HPSBUX02741-SSRT100728-2.txt http://packetstormsecurity.org/files/110540/HPSBUX02741-SSRT100728-2.txt http://packetstormsecurity.org/files/110540/HP-Security-Bulletin-HPSBUX02741-SSRT100728-2.html Wed, 07 Mar 2012 23:23:06 GMT HP Security Bulletin HPSBUX02741 SSRT100728 2 - Potential security vulnerabilities have been identified with HP-UX Apache Running Tomcat Servlet Engine. These vulnerabilities could be exploited remotely to create a Denial of Service (DoS) or to perform an access restriction bypass. The Tomcat-based Servlet Engine is contained in the HP-UX Apache Web Server Suite. Revision 2 of this advisory. http://packetstormsecurity.org/files/110189/HPSBUX02737-SSRT100747-2.txt http://packetstormsecurity.org/files/110189/HPSBUX02737-SSRT100747-2.txt http://packetstormsecurity.org/files/110189/HP-Security-Bulletin-HPSBUX02737-SSRT100747-2.html Fri, 24 Feb 2012 23:10:31 GMT HP Security Bulletin HPSBUX02737 SSRT100747 2 - A potential security vulnerability has been identified with HP-UX OpenSSL. This vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 2 of this advisory.