---------------------------------------------------------------------- Do you have VARM strategy implemented? (Vulnerability Assessment Remediation Management) If not, then implement it through the most reliable vulnerability intelligence source on the market. Implement it through Secunia. For more information visit: http://secunia.com/advisories/business_solutions/ Alternatively request a call from a Secunia representative today to discuss how we can help you with our capabilities contact us at: sales@secunia.com ---------------------------------------------------------------------- TITLE: HP StorageWorks Products Remote Management Interface Denial of Service SECUNIA ADVISORY ID: SA36764 VERIFY ADVISORY: http://secunia.com/advisories/36764/ DESCRIPTION: A vulnerability has been reported in various HP StorageWorks products, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an unspecified error in RMI (Remote Management Interface) for MSL Tape Libraries and 1/8 G2 Tape Autoloaders. The vulnerability is reported in the following versions: * HP StorageWorks 1/8 G2 Tape Autoloader firmware version 2.30 and earlier * HP StorageWorks MSL2024 Tape Library firmware version 4.20 and earlier * HP StorageWorks MSL4048 Tape Library firmware version 6.50 and earlier * HP StorageWorks MSL8096 Tape Library firmware version 8.90 and earlier SOLUTION: Update to a fixed version. http://www.hp.com/support/storage HP StorageWorks 1/8 G2 Tape Autoloader: Apply firmware version 2.50 or later. HP StorageWorks MSL2024 Tape Library: Apply firmware version 4.40 or later. HP StorageWorks MSL4048 Tape Library: Apply firmware version 6.70 or later. HP StorageWorks MSL8096 Tape Library: Upgrade to firmware version 9.10 or later. PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: HPSBST02459 SSRT080134: http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01868405 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------