HP Security Bulletin HPSBMU03033 2 - A potential security vulnerability has been identified with HP Insight Control software components running OpenSSL. This is the OpenSSL vulnerability known as "Heartbleed" which could be exploited remotely resulting in disclosure of information. Revision 2 of this advisory.
9ed88e39da9b5bfef2de4802afcb1fdf6796460c9bf50affc8823ee1f42d4097HP Security Bulletin HPSBMU03024 2 - A potential security vulnerability has been identified with HP System Management Homepage (SMH) running on Linux and Windows and HP Systems Insight Manager (SIM), components of HP Insight Control server deployment. This is the OpenSSL vulnerability known as "Heartbleed" which could be exploited remotely resulting in disclosure of information. Revision 2 of this advisory.
d8468e5894b9600422be14b258178640f5a3577683d943fcb5bee21875256f9cGoogle Chrome version 34.0.1847.131 suffers from a dll hijacking vulnerability.
1560865dcbadd6a8b9cbcd8e6fe8da194eb81a5bbed28f3278ea910f3d5ac68acryptmount is a utility for creating and managing secure filing systems on GNU/Linux systems. After initial setup, it allows any user to mount or unmount filesystems on demand, solely by providing the decryption password, with any system devices needed to access the filing system being configured automatically. A wide variety of encryption schemes (provided by the kernel dm-crypt system and the libgcrypt library) can be used to protect both the filesystem and the access key. The protected filing systems can reside in either ordinary files or disk partitions. The package also supports encrypted swap partitions, and automatic configuration on system boot-up.
2c7febc1002fcbee5f8e43760628a85ef9026d5053b5c309f2623421a306404dHP Security Bulletin HPSBMU02987 2 - A potential security vulnerability has been identified with HP Universal Configuration Management Database Integration Service. The vulnerability could be exploited to allow remote execution of code. Revision 2 of this advisory.
238fe4db94ebd5aec171ce41d11f57e0cfa4ee8a8f3b7d0b3be7c4bec06ec8b7HP Security Bulletin HPSBMU03018 2 - A potential security vulnerability has been identified with HP Software Asset manager running OpenSSL. The Heartbleed vulnerability was detected in specific OpenSSL versions. OpenSSL is a 3rd party product that is embedded with some of HP Software products. This bulletin objective is to notify HP Software customers about products affected by the Heartbleed vulnerability. Revision 2 of this advisory.
bdaf2903d6deafdebfbc2e015d8297ba05fe5c0b00a8f2d7e828c9c6dee82ae0HP Security Bulletin HPSBST03027 - A potential security vulnerability has been identified with HP StoreVirtual 4000 Storage and HP P4000 G2 Storage using HP System Management Homepage (SMH) running OpenSSL. This is the OpenSSL vulnerability known as "Heartbleed" which could be exploited remotely resulting in disclosure of information. Revision 1 of this advisory.
c33bb90185b140abd6a4b96977e66883377e0697d2ab5622f0850c6ddc12715dHP Security Bulletin HPSBGN03034 - A potential security vulnerability has been identified in HP OneView which could be exploited resulting in remote elevation of privileges. Revision 1 of this advisory.
36db80fcc0d46f8f76fd045a30f2e614664aa460bd7979d5e169380aa99165dfHP Security Bulletin HPSBST03004 - A potential security vulnerability has been identified with HP IBRIX X9320 Storage running OpenSSL. This is the OpenSSL vulnerability known as "Heartbleed" which could be exploited remotely resulting in disclosure of information. Revision 1 of this advisory.
ab882b38e214407ed1c287dd249a80c3f8767a646ce3d03988c423394812996eHP Security Bulletin HPSBMU02998 3 - Potential security vulnerabilities have been identified with HP System Management Homepage (SMH) running on Linux and Windows. The vulnerabilities could be exploited remotely resulting in Denial of Service (DoS). Also included is the OpenSSL vulnerability known as "Heartbleed" which could be exploited remotely resulting in disclosure of information. Revision 3 of this advisory.
c9685c1be9739974f18aeecc3433961057ad78f3c535bd0a7eebe068b0ba2914Apache Struts 1, now EOL'ed a year ago, suffers from a ClassLoader manipulation vulnerability similar to recent findings. Alvaro Munoz and the HP Fortify team have helped the Struts team come up with a recommendation for mitigation.
f9f8a680c7342a4ec7664f0833621f029bef66354e591a521ed9ce01dd951ae2HP Security Bulletin HPSBMU03009 2 - The Heartbleed vulnerability was detected in specific OpenSSL versions. OpenSSL is a 3rd party product that is embedded with some of HP Software products. This bulletin objective is to notify HP Software customers about products affected by the Heartbleed vulnerability. Revision 2 of this advisory.
b7652e41cd10b8e208654b51588d785211891df99f6f2705a0f66390af0735f1HP Security Bulletin HPSBMU03028 - A potential security vulnerability has been identified with HP Matrix Operating Environment and CloudSystem Matrix software components running OpenSSL. This is the OpenSSL vulnerability known as "Heartbleed" which could be exploited remotely resulting in disclosure of information. Revision 1 of this advisory.
8b3d68aae28780fc41c8e5e1e4e7ecb38a7c2a2c3626e8a0a355fefb0e1b1001HP Security Bulletin HPSBMU03029 - A potential security vulnerability has been identified with HP Insight Control server migration running OpenSSL. This is the OpenSSL vulnerability known as "Heartbleed" which could be exploited remotely resulting in disclosure of information. Revision 1 of this advisory.
4de74b6830b7f80937530a1eeeff7138b52ef18c358c9e3fccda32ef79428149F5 BIG-IQ version 4.1.0.2013.0 is vulnerable to a privilege escalation attack which allows an attacker to change the root users password. This Metasploit module does just this, then SSH's in.
e88c2fdbf6780b151994d9da095dd2c28aa8321d1b27ae806082f64775e233a7BVS Site versions 4.0.1 and 5.2.1 suffer from a cross site scripting vulnerability.
b048db1162e20df94d3dcfb79e46098c97855030d1cc132d73540b06a7d4e0d9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed