Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4590

Overview

Vulnerability Score 3.3 3.3
CVE Id CVE-2007-4590
Last Modified 07 Mar 2011 09:58:51
Published 28 Aug 2007 09:17:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4590

Summary

The get_system_info command in Ignite-UX C.7.0 through C.7.3, and DynRootDisk (DRD) A.1.0.16.417 through A.2.0.0.592, on HP-UX B.11.11, B.11.23, and B.11.31 does not inform local users of networking changes made by the command, which has unknown impact and attack vectors.

Vulnerable Systems

Operating System

  • Hp Ignite-ux C.7.0.212

  • Hp Ignite-ux C.7.1.92

  • Hp Ignite-ux C.7.2.93

  • Hp Ignite-ux C.7.3.144

  • Hp-ux 11.11

  • Hp-ux 11.23

  • Hp-ux 11.31

Application

  • Hp Dynrootdisk A.1.0.16.417

  • Hp Dynrootdisk A.1.0.18.245

  • Hp Dynrootdisk A.1.1.0.344

  • Hp Dynrootdisk A.2.0.0.592


References

SECUNIA - 26599

HP - SSRT071442

VUPEN - ADV-2007-2985

SECTRACK - 1018607

OSVDB - 37563

BID - 25469

HP - HPSBUX02249


Last Updated: 27 May 2016 10:47:26