In association with heise online

12 January 2007, 10:44

Security leak in HP's OpenView component

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Hewlett-Packard has issued a warning about a security hole in its OpenView Network Node Manager (inventory and administration software for networks) that attackers could use to inject arbitrary malicious code onto the systems affected and execute it there with the rights of the OpenView component. To perform this attack, no registration on the system is required.

HP does not provide any further details on this vulnerability. The hole concerns the Network Node Manager 6.20, 6.4, 7.01 and 7.50 on HP-UX B.11.00, B.11.00, and B.11.23, as well as on Solaris, Windows, and Linux. The company is providing registered customers with updates to close the hole. HP recommends that affected administrators update as quickly as possible.

See also:

(ehe)

Print Version | Send by email | Permalink: http://h-online.com/-732106
 


  • July's Community Calendar





The H Open

The H Security

The H Developer

The H Internet Toolkit