SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03221589
Version: 1
HPSBUX02755 SSRT100667 rev.1 - HP-UX WBEM, Remote Unauthorized Access to Diagnostic Data
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2012-03-27
Last Updated: 2012-03-27
Potential Security Impact: Unauthorized access to diagnostic data
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY
A potential security vulnerability has been identified with certain HP-UX WBEM components. The vulnerability could be exploited remotely in HP-UX 11.11 and HP-UX 11.23 to gain unauthorized access to diagnostic data. The vulnerability could be exploited locally in HP-UX 11.31 to gain unauthorized access to diagnostic data.
References: CVE-2012-0125 (HP-UX 31), CVE-2012-0126 (HP-UX 11.11 and HP-UX 11.23)
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
HP-UX 11.31
ProviderSvcsBase
before C.07.00.08.02
HP-UX 11.31
SysFaultMgmt
before C.07.06.03.01
HP-UX 11.31
DASProvider
before B.11.31.1203.07.02
HP-UX 11.31
FCProvider
before B.11.31.1203.06.02
HP-UX 11.31
RAIDSAProvider
before B.11.31.1203.06.02
HP-UX 11.31
SASProvider
before B.11.31.1203.05.02
HP-UX 11.23
SysFaultMgmt
before B.07.06.01.02
HP-UX 11.11
SysFaultMgmt
before A.04.04.03.02
BACKGROUND
For a PGP signed version of this security bulletin please write to: Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
CVSS 2.0 Base Metrics
Reference
Base Vector
Base Score
CVE-2012-0125
(AV:L/AC:M/Au:S/C:P/I:P/A:N)
3.0
CVE-2012-0126
(AV:N/AC:M/Au:N/C:P/I:P/A:N)
5.8
Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
Note: The root cause of the vulnerability is the same for HP-UX 11.11, 11.23, and 11.31. However, the vulnerable feature cannot be accessed remotely in HP-UX 11.31.
RESOLUTION
HP has provided the following to resolve the vulnerability.
HP-UX 11i v3 (HP-UX 11.31)
WBEMMgmtBundle C.03.01 or subsequent is available for download here:
https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=WBEMMgmtBundle
HP-UX 11i v2 (HP-UX 11.23)
SysFaultMgmt B.07.06.01.02 or subsequent is available for download here:
https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=SysFaultMgmt
HP-UX 11i v1 (HP-UX 11.11)
SysFaultMgmt A.04.04.03.02 or subsequent is available for download here:
https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=SysFaultMgmt
MANUAL ACTIONS: Yes - Update
Install the update as listed above.
PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS (for HP-UX)
HP-UX B.11.31
==================
SFM-CORE.SFM_PRO_PA
SFM-CORE.SFM_PRO_IA
SFM-CORE.CPU-TEST-IA
SFM-CORE.CTR_PRO_COMM
SFM-CORE.CTR_PRO_COREIA
SFM-CORE.CTR_PRO_COREPA
SFM-CORE.EMT_COREIA
SFM-CORE.EMT_COREPA
SFM-CORE.EMT_DOC
SFM-CORE.EVM_PRO_COMM
SFM-CORE.EVM_PRO_COREIA
SFM-CORE.EVM_PRO_COREPA
SFM-CORE.EVWEB_COMM
SFM-CORE.EVWEB_COREIA
SFM-CORE.EVWEB_COREPA
SFM-CORE.EVWEB_DOC
SFM-CORE.EVWEB_GUI_COMM
SFM-CORE.EVWEB_GUI_IA
SFM-CORE.EVWEB_GUI_PA
SFM-CORE.FMD_PRO_COMM
SFM-CORE.FMD_PRO_COREIA
SFM-CORE.FMD_PRO_COREPA
action: install revision C.07.06.03 or subsequent
HP-UX B.11.31
==================
SFM-JOEM-CORE.SFM_PRO_JOEM
SFM-JOEM-CORE.CTR_PRO_JOEM
SFM-JOEM-CORE.EMT_CORE_JOEM
SFM-JOEM-CORE.EMT_DOC_JOEM
SFM-JOEM-CORE.EMT_MAN_JOEM
SFM-JOEM-CORE.EVM_PRO_JOEM
SFM-JOEM-CORE.EVWEB_COR_JOEM
SFM-JOEM-CORE.EVWEB_DOC_JOEM
SFM-JOEM-CORE.EVWEB_GUI_JOEM
SFM-JOEM-CORE.EVWEB_MAN_JOEM
SFM-JOEM-CORE.FMD_PRO_JOEM
SFM-JOEM-CORE.GS_JOEM
SFM-JOEM-CORE.MISC_CORE_JOEM
SFM-JOEM-CORE.SFM_JOEM_MAN
SFM-JOEM-CORE.SFM_PRO_JOEM
SFM-JOEM-CORE.SFM_PRO_JOEM
action: install revision C.07.06.03 or subsequent
HP-UX B.11.31
==================
RAIDSA-PROVIDER.RAIDSA-PROV-RUN
action: install revision B.11.31.1203.06.02 or subsequent
HP-UX B.11.31
==================
WBEMP-Storage.STORAGE-IP-LIB
WBEMP-Storage.STORAGE-IP-RUN
WBEMP-Storage.STORAGE-LWE-RUN
WBEMP-Storage.STORAGE-PROV-LIB
WBEMP-Storage.STORAGE-PROV-RUN
action: install revision B.11.31.1203.07.02 or subsequent
HP-UX B.11.31
================
WBEMP-FCP.CSP-LIB
WBEMP-FCP.CSP-LIB
WBEMP-FCP.CSP-RUN
WBEMP-FCP.FCP-IP-LIB
WBEMP-FCP.FCP-IP-LIB
WBEMP-FCP.FCP-IP-RUN
WBEMP-FCP.FCP-IP-RUN
WBEMP-FCP.FCP-LIB
WBEMP-FCP.FCP-LIB
WBEMP-FCP.FCP-NIP-LIB
WBEMP-FCP.FCP-NIP-RUN
WBEMP-FCP.FCP-RUN
action: install revision B.11.31.1203.06.02 or subsequent
HP-UX B.11.31
==================
SAS-PROVIDER.SAS-PROVIDER-RUN
action: install revision B.11.31.1203.05.02 or subsequent
HP-UX B.11.23
==================
SysFaultMgmt.SFM-CORE.SFM_PRO_PA
SysFaultMgmt.SFM-CORE.SFM_PRO_IA
action: install SysFaultMgmt B.07.06.01.02 or subsequent
HP-UX B.11.11
==================
SysFaultMgmt.SFM-CORE.SFM_PRO_PA
action: install SysFaultMgmt A.04.04.03.02 or subsequent
END AFFECTED VERSIONS (for HP-UX)
HISTORY:
Version:1 (rev.1) - 27 March 2012 Initial Release
Posljednje sigurnosne preporuke