Secunia Security Advisory - A vulnerability has been reported WMI Mapper for HP Systems Insight Manager, which can be exploited by malicious, local users to perform certain actions with escalated privileges and malicious people to disclose potentially sensitive information.
beb29d96289ce28e9e0739db668b105205c46d7a710bbde65d62b47a06a9ff29
----------------------------------------------------------------------
Did you know? Our assessment and impact rating along with detailed
information such as exploit code availability, or if an updated patch
is released by the vendor, is not part of this mailing-list?
Click here to learn more about our commercial solutions:
http://secunia.com/advisories/business_solutions/
Click here to trial our solutions:
http://secunia.com/advisories/try_vi/
----------------------------------------------------------------------
TITLE:
WMI Mapper for HP Systems Insight Manager Unauthorised Access
SECUNIA ADVISORY ID:
SA34243
VERIFY ADVISORY:
http://secunia.com/advisories/34243/
DESCRIPTION:
A vulnerability has been reported WMI Mapper for HP Systems Insight
Manager, which can be exploited by malicious, local users to perform
certain actions with escalated privileges and malicious people to
disclose potentially sensitive information.
The vulnerability is caused due to an unspecified error, which can be
exploited to gain unauthorised access to unspecified data or locally
to gain unauthorised access.
The vulnerability is reported in WMI Mapper for HP Systems Insight
Manager prior to version 2.5.2.0.
SOLUTION:
Apply WMIMapper2_6_0.msi or subsequent.
http://www.hp.com/bizsupport/
PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.
ORIGINAL ADVISORY:
HPSBMA02412 SSRT080040:
http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01655638
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------