NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > HP/HP-UX Digests> 2003-q1

From: IT Resource Center (support_feedback_at_us-support2-mail.external.hp.com)
Date: Fri Jan 10 2003 - 07:04:48 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

HP Support Information Digests

===============================================================================
o Security Bulletin Digest Split
------------------------------

   The security bulletins digest has been split into multiple digests
   based on the operating system (HP-UX, MPE/iX, and HP Secure OS
   Software for Linux). You will continue to receive all security
   bulletin digests unless you choose to update your subscriptions.

   To update your subscriptions, use your browser to access the
   IT Resource Center on the World Wide Web at:

http://support.itrc.hp.com/

   Under the Maintenance and Support Menu, click on the "more..." link.
   Then use the 'login' link at the left side of the screen to login
   using your IT Resource Center User ID and Password.

Under the notifications section (near the bottom of the page), select
Support Information Digests.

   To subscribe or unsubscribe to a specific security bulletin digest,
   select or unselect the checkbox beside it. Then click the
   "Update Subscriptions" button at the bottom of the page.

o IT Resource Center World Wide Web Service
---------------------------------------------------

   If you subscribed through the IT Resource Center and would
   like to be REMOVED from this mailing list, access the
   IT Resource Center on the World Wide Web at:

http://support.itrc.hp.com/

   Login using your IT Resource Center User ID and Password.
   Then select Support Information Digests (located under
   Maintenance and Support). You may then unsubscribe from the
   appropriate digest.
===============================================================================

Digest Name: daily HP-UX security bulletins digest
Created: Fri Jan 10 6:00:03 EST 2003

Table of Contents:

Document ID Title
--------------- -----------
HPSBUX0301-236 MANUAL ACTIONS fields corrected
HPSBUX0201-180 Sec. Vulnerability with WU-FTPD 2.6 (rev.1)
HPSBUX0110-172 Sec. Vulnerability in telnetd (rev.1)
HPSBUX0203-187 Sec. Vulnerability in JRE Bytecode Verifier (rev.1)
HPSBUX0203-188 Sec. Vulnerability in JAVA Web Start ) (rev.1)
HPSBUX0207-205 RFC 1948 ISN randomization is now available (rev.1)

The documents are listed below.
-------------------------------------------------------------------------------

Document ID: HPSBUX0301-236
Date Loaded: 20030109
Title: MANUAL ACTIONS fields corrected

TEXT

-----------------------------------------------------------------
Source: HEWLETT-PACKARD COMPANY
SECURITY BULLETIN: HPSBUX0301-236
Originally issued: 10 January 2003
MANUAL ACTIONS fields corrected
-----------------------------------------------------------------
NOTICE: There are no restrictions for distribution of this Bulletin
provided that it remains complete and intact.

------------------------------------------------------------------
PROBLEM: Some security bulletins had incorrect or incomplete
MANUAL ACTIONS fields.

IMPACT: Determining the correct actions was inconvenient.

PLATFORM: All

SOLUTION: The MANUAL ACTIONS fields have been corrected.

MANUAL ACTIONS: Yes - NonUpdate
                If bulletins are maintained locally, optionally
                download new copies. Only bulletins with incorrect
                MANUAL ACTIONS fields will be mailed out.
                Bulletins which were revised to add a missing
                MANUAL ACTIONS field or to correct the format of
                the MANUAL ACTIONS field will not be mailed out for
                this revision.

AVAILABILITY: The corrected bulletins are available now.
------------------------------------------------------------------
A. Background

The format of the MANUAL ACTIONS line has been standardized.

MANUAL ACTIONS: No

The bulletin can be completely implemented by installing
a standard patch (for example, PHxx_12345).

   MANUAL ACTIONS: Non-HP-UX only

      The same as "MANUAL ACTIONS: No" for HP-UX, but the bulletin
      applies to other operating systems for which a manual
      action is required.

MANUAL ACTIONS: Yes - Update

The product must be updated rather than patched.

MANUAL ACTIONS: Yes - Update plus other actions

The product must be updated rather than patched.
Other actions in addition to updating are required.

MANUAL ACTIONS: Yes - NonUpdate

Some action is required instead of or in addition to
installing an update or a patch.

For bulletins with "MANUAL ACTIONS: No" the Security Patch Check
Tool is able to determine whether the bulletin has been implemented
on a system running HP-UX 11.X. For 10.X, if the bulletin says
"MANUAL ACTIONS: No" and a patch listed in the Security Patch Matrix
(or a superseding patch) has been installed, the bulletin has been
implemented.

The following security bulletins were updated to conform with the
MANUAL ACTIONS format above. The revised bulletins are listed
in three sections:

      I. Incorrect MANUAL ACTIONS
     II. Missing or mis-formatted "MANUAL ACTIONS - Yes"
          or "MANUAL ACTIONS - Non-HP-UX only".
    III. Missing or mis-formatted "MANUAL ACTIONS - Non-HP-UX only"
     IV. Missing or mis-formatted "MANUAL ACTIONS - No"

======================================================
I. Incorrect MANUAL ACTIONS
======================================================

The MANUAL ACTIONS section in each of the following
bulletins was incorrect or misleading. These bulletins
have been revised and sent to the e-mail distribution.

=========================================
HPSBUX0110-172 Sec. Vulnerability in telnetd
PLATFORM: HP9000 Servers running HP-UX releases 10.X only.
MANUAL ACTIONS: No
=========================================
HPSBUX0201-180 Sec. Vulnerability with WU-FTPD 2.6
PLATFORM: HP9000 Series 700/800 running HP-UX releases 11.0 and 11.11.
MANUAL ACTIONS: Yes - Update
                Upgrade WU-FTPD to version 2.6 (rev b01.002).
=========================================
HPSBUX0203-187 Sec. Vulnerability in JRE Bytecode Verifier
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.20 and
           11.x only. This security bulletin applies to Java
           on HP-UX. It does not cover software shipped on Linux
           or Windows/NT.
MANUAL ACTIONS: Yes - Update
                JDK and JRE 1.1.8.06 or higher for HP-UX 10.20.
                JDK and JRE 1.1.8.06 or higher for HP-UX 11.x
                JDK and JRE 1.2.2.12 or higher for HP-UX 11.x.
                JDK and JRE 1.3.1.00 or higher for HP-UX 11.x
=========================================
HPSBUX0203-188 Sec. Vulnerability in JAVA Web Start
PLATFORM: HP9000 Series 700/800 running HP-UX releases 11.x only.
           This security bulletin applies to Java Web Start on HP-UX.
           It does not cover software shipped on Linux or Windows/NT.
MANUAL ACTIONS: Yes - Update
                Web Start 1.0.1.01 or higher for HP-UX 11.x.
=========================================
HPSBUX0207-205 RFC 1948 ISN randomization is now available.
PLATFORM: HP9000 Series 700/800 running HP-UX releases 11.00,
          11.04 and 11.11.
MANUAL ACTIONS: Yes - NonUpdate
                Install patch and enable randomization.
=========================================

======================================================
II. Missing or mis-formatted "MANUAL ACTIONS - Yes"
======================================================

The MANUAL ACTIONS section in each of the following bulletins
was either missing or was not in the new format. These
bulletins will not be sent to the e-mail distribution.

=========================================
HPSBUX9402-004 Promiscuous mode network interfaces
PLATFORM: HP 9000 Series 300, 400, 700, 800 running HP-UX
                Apollo Token Ring (HP-UX 8.X, 9.X; s700 only)
                STREAMS-DLPI (HP-UX 9.X)
MANUAL ACTIONS: Yes - NonUpdate
                Prevent users from gaining root access.
=========================================
HPSBUX9404-007 HP-UX does not have ftpd SITE EXEC vulnerability
PLATFORM: All HP-UX systems
MANUAL ACTIONS: Yes - NonUpdate
                Advisory only.
=========================================
HPSBUX9405-010 ftpd: SITE CHMOD / race condition vulnerability
PLATFORM: All HP-UX systems
MANUAL ACTIONS: Yes - NonUpdate
                Advisory only.
=========================================
HPSBUX9405-011 Security Vulnerability in HP GlancePlus
PLATFORM: HP 9000 series 300/400s and 700/800s.
MANUAL ACTIONS: Yes - Update
=========================================
HPSBUX9405-012 Security vulnerability in Multimedia Sharedprint
PLATFORM: HP 9000 series 700 at HP-UX revision 9.X, only
MANUAL ACTIONS: Yes - NonUpdate
                Change file permissions.
=========================================
HPSBUX9406-014 Patch file permissions vulnerability
PLATFORM: s300/s400/s700/s800 all revisions of hp-ux
MANUAL ACTIONS: Yes - NonUpdate
                Run the fix_patch_perms script (below).
=========================================
HPSBUX9408-016 Patch sums and the MD5 program
PLATFORM: All HP-UX systems.
MANUAL ACTIONS: Yes - NonUpdate
                Advisory only.
=========================================
HPSBUX9502-021 No current vulnerability in /bin/mail (or /bin/rmail)
PLATFORM: All HP-UX systems
MANUAL ACTIONS: Yes - NonUpdate
                Advisory only.
=========================================
HPSBUX9504-026 Preparing Your HP-UX System for SATAN
PLATFORM: All HP-UX systems
MANUAL ACTIONS: Yes - NonUpdate
                Implement procedure discussed below before
                running SATAN.
=========================================
HPSBUX9511-028 Security Vulnerability in FTP
PLATFORM: HP 9000 series 300/400s and 700/800s
MANUAL ACTIONS: Yes - Update
                Update to 9.x or 10.x, then apply the
                appropriate patches.
=========================================
HPSBUX9602-030 Security Vulnerability DCE Sec. Service session key gen'rtn
PLATFORM: HP 9000/700 and 9000/800 systems running HP DCE/9000 and
          configured into DCE cells
MANUAL ACTIONS: Yes - NonUpdate
                Apply patches and change all keys
                (details below)
=========================================
HPSBUX9607-033 Security Vulnerability in expreserve
PLATFORM: HP 9000 series 300/400s and 700/800s
MANUAL ACTIONS: Yes - NonUpdate
                Apply patches (9.X, 10.X) or take documented
                actions for releases of HP-UX prior to 9.X.
=========================================
HPSBUX9607-034 Security Vulnerability in SAM remote admin
PLATFORM: HP 9000/300/400/700 and 800 systems running any currently
          supported version of HP-UX 9.X and 10.X.
MANUAL ACTIONS: Yes - NonUpdate
                Implement workaround below.
=========================================
HPSBUX9607-035 Security Vulnerability in nettune executable
PLATFORM: HP 9000/700 and 9000/800 systems running operating system
          version 10.0 or 10.01 of HP-UX.
MANUAL ACTIONS: Yes - NonUpdate
                Change permissions and ownership of
                /usr/contrib/bin/nettune.
=========================================
HPSBUX9610-039 Security Vulnerabilities in HP Remote Watch
PLATFORM: HP 9000 series 300/400/700/800s
MANUAL ACTIONS: Yes - NonUpdate
                Do not use Remote Watch.
=========================================
HPSBUX9611-041 Vulnerability with Large UID's and GID's in HP-UX 10.20
PLATFORM: HP 9000 series 700/800 systems running version 10.20
MANUAL ACTIONS: Yes - NonUpdate
                Apply patches and examine suid files.
=========================================
HPSBUX9612-042 Security Vulnerability in fpkg2swpkg in HP-UX 10.XX
PLATFORM: HP 9000 Series 700 and 800s
MANUAL ACTIONS: Yes - NonUpdate
                Remove suid bit from /usr/sbin/fpkg2swpkg.
=========================================
HPSBUX9701-054 Recent sendmail patches for HP-UX releases 9.X thru 10.10
PLATFORM: HP 9000 Series 700/800s running versions of HP-UX 9.X thru 10.10
MANUAL ACTIONS: Yes - NonUpdate
                Clean up password file.
=========================================
HPSBUX9704-058 Security Vulnerability in libXt for HP-UX 9.X + 10.X
PLATFORM: HP 9000 series 700/800 systems running version 9.X or 10.X
MANUAL ACTIONS: Yes - NonUpdate
                Apply the patches listed below and relink any
                suid/sgid programs that use libXt.a.
=========================================
HPSBUX9704-060 SYN Flooding Security Vulnerability in HP-UX
PLATFORM: HP 9000 Series 700/800s running versions of HP-UX 9.X and 10.X
MANUAL ACTIONS: Yes - NonUpdate
                Apply the appropriate patch and enable/tune
                the defense mechanism.
=========================================
HPSBUX9707-065 Security Advisory in Netscape shipped with HP-UX
PLATFORM: All platforms running Netscape Navigator 2.0, 3.0, and
          Communicator 4.0.
MANUAL ACTIONS: Yes - NonUpdate
                 Apply the workaround described below.
=========================================
HPSBUX9707-068 Security Vulnerability in Novell Netware 3.12 on HP-UX
PLATFORM: HP 9000 Series 700/800s running only specific releases of HP-UX
          9.X and 10.X. See below.
MANUAL ACTIONS: Yes - Update
=========================================
HPSBUX9709-069 Security Advisory in vuefile, vuepad, et. al. in HP-UX
PLATFORM: HP9000 Series 700/800s running HP-UX releases 9.X and 10.X
MANUAL ACTIONS: Yes - NonUpdate
                Do not run vuefile, vuepad, dtfile, or dtpad
                while su'd to another account or with the
                display set to another Xserver, unless the
                same account is logged in at each Xserver.
=========================================
HPSBUX9710-072 Sec. Vulnerability in CDE on HP-UX 10.[10, 20, 24, 30]
PLATFORM: HP9000 series 700/800, HP-UX releases 10.10, 10.20, 10.24,
          and 10.30.
MANUAL ACTIONS: Yes - NonUpdate
                Install the patches and relink any programs
                linked with archived CDE libraries.
=========================================
HPSBUX9801-074 Security Vulnerability in CUE under HP-UX
PLATFORM: HP9000 series 800, releases HP-UX 8.X, 9.X, 10.X, and 11.0
MANUAL ACTIONS: Yes - NonUpdate
                Remove the cue program.
=========================================
HPSBUX9804-078 Security Vulnerability in Openmail on HP-UX
PLATFORM: Any HP 9000 series 700/800 systems running OpenMail.
MANUAL ACTIONS: Yes - NonUpdate
                Reconfigure OpenMail per the OpenMail
                Technical Guide.
=========================================
HPSBUX9807-080 Security Advisory with Netscape servers on HP-UX
PLATFORM: HP9000 Series 7/800 running HP-UX releases 10.X and 11.00
MANUAL ACTIONS: Yes - NonUpdate
                Download patches for Netscape 3.X and earlier
                from Netscape.
=========================================
HPSBUX9810-085 Security Vulnerability with HP OpenView Omniback II
PLATFORM: HP9000 series 7/800 running releases 9.X, 10.X, or 11.00
          Other vendor platforms as noted below.
MANUAL ACTIONS: Yes - NonUpdate
                Install patches and take other
                actions described below.
=========================================
HPSBUX9904-097 Security Vulnerability in sendmail
PLATFORM: HP 9000 Series 700/800 Servers running HP-UX 10.20 and 11.00
MANUAL ACTIONS: Yes - Update

       For HP-UX releases prior to 10.20, upgrade from
       sendmail 5.65 to
       sendmail release 8.8.6. See www.software.hp.com

       For HP-UX release 10.20: PHNE_17135 ;
       For HP-UX release 11.00: PHNE_17190.
=========================================
HPSBUX9907-100 CDE Leaves Current Directory in root PATH
PLATFORM: HP 9000 series 700/800 at HP-UX revision 10.X
MANUAL ACTIONS: Yes - NonUpdate
                For 10.10, Modify /usr/dt/bin/Xsession
                           as shown below.
                For 10.20, install PHSS_19482 or subsequent
                For 10.24, install PHSS_19702 or subsequent
                Note: No action is needed for 10.20 or 10.24
                      beyond installing the patch.
=========================================
HPSBUX9911-105 Security Vulnerability on V Class Teststation
PLATFORM: HP9000 Series 800 S/X/V Class servers.
MANUAL ACTIONS: Yes - Update
                Install patch or update to Teststation
                or Teststation Version 1.1.2
=========================================
HPSBUX0001-109 Security Vulnerability with Audio Security File
PLATFORM: HP9000 Series 7/800 running HP-UX releases 10.X and 11.X
MANUAL ACTIONS: Yes - NonUpdate
                Apply the appropriate patch.
                10.10,10.20 PHSS_24534 or subsequent.
                11.00 PHSS_24608 or subsequent.
                If /etc/opt/audio/audio.sec exists and
                does not have 444 permissions,
                chmod 444 /etc/opt/audio/audio.sec
=========================================
HPSBUX0001-110 Security Vulnerability with PMTU strategy
PLATFORM: HP-UX releases 10.30, 11.00 and 11.04 only.
MANUAL ACTIONS: Yes - NonUpdate
                Set the NDD parameter ip_pmtu_strategy to 1.
=========================================
HPSBUX0002-111 Sec. Vulnerability with Ignite on Trusted systems
PLATFORM: HP-9000 Series700/800 running release HP-UX 11.X only.
MANUAL ACTIONS: Yes - NonUpdate
                Verify that all entries in /etc/passwd have
                "*" in the password field if the
                system is trusted.
=========================================
HPSBUX0005-114 Sec. Vulnerability in BIND
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.XX and 11.XX.
MANUAL ACTIONS: Yes - Update
                Install patches (below) which upgrade BIND
                4.9.7 or upgrade to version 8.1.2.
=========================================
HPSBUX0010-126 Sec. Vulnerability in Praesidium Web Proxy 1.0
PLATFORM: VVOS release 10.24 and 11.04 running VirtualVault 4.0,
          with HP Praesidium Proxy V1.0 only.
MANUAL ACTIONS: Yes - NonUpdate
                Reconfigure web server as necessary.
=========================================
HPSBUX0011-131 Sec. Vulnerability in EMS
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.20 and 11.00.
MANUAL ACTIONS: Yes - Update
                Update to EMS A.03.20 release.
=========================================
HPSBUX0011-132 Sec. Vulnerability in JRE
PLATFORM: This security bulletin applies to Java on HP9000 Series
          700/800 running HP-UX releases 10.20, 10.24, 11.00, 11.04,
          and 11.11 only. It does not cover software shipped on
          Linux nor on Windows/NT.
MANUAL ACTIONS: Yes - Update
                      Install the latest Java releases:
                      JDK and JRE 1.1.8.04 or higher for HP-UX 10.20,
                           10.24, 11.00, 11.04 and 11.11.
                      JDK and JRE 1.2.2.04 or higher for HP-UX 11.00,
                           11.04 and 11.11.
                      JDK and JRE 1.3.0.00 for HP-UX 11.XX
=========================================
HPSBUX0012-133 Sec. Vulnerability in ContinentalClusters
PLATFORM: HP9000 Series 800 running ContinentalClusters all
           releases A.01.0X, and A.02.00 on HP-UX release 11.00
           and 11.11.
MANUAL ACTIONS: Yes - Update plus other actions
                Upgrade to ContinentalClusters version A.02.00
                and apply patches.
=========================================
HPSBUX0102-141 Sec. Vulnerability in JRE
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.20, 10.24, 11.00,
           11.04, and 11.11 only. This security bulletin applies to Java
           on HP-UX, and does not cover software shipped on Linux, nor on
           Windows/NT.
MANUAL ACTIONS: Yes - Update
                Install the latest Java releases:
                 JDK and JRE 1.1.8.05 or higher for HP-UX 10.20,
                        10.24 and 11.XX.
                 JDK and JRE 1.2.2.07 or higher for HP-UX 11.XX.
                 JDK and JRE 1.3.0.00 or higher for HP-UX 11.XX.
=========================================
HPSBUX0102-142 Sec. Vulnerability in OV OmniBack
PLATFORM: Windows NT 4.0, Windows 2000, and HP-UX Systems running
          OmniBack Version 3.00 or later.
MANUAL ACTIONS: Yes - NonUpdate
                Apply patches available at the OV website:
                http://ovweb.external.hp.com/cpe/patches/
=========================================
HPSBUX0102-144 Sec. Vulnerability in BIND
PLATFORM: HP9000 servers and workstations running HP-UX releases
           11.11, 11.00, 11.04, 10.20, 10.24, 10.10, and 10.01.
MANUAL ACTIONS: Yes - Update
                For 11.00 (BIND 8.1.2): upgrade to BIND 8.1.3
                For 11.11 (BIND 8.1.2): apply patch.
                For Bind 4.9.7 apply patches.
=========================================
HPSBUX0103-145 Sec. Vulnerability in asecure
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.01,
          10.10, 10.20, 10.26 and 11.00 only.
MANUAL ACTIONS: Yes - NonUpdate
                Apply patches except for 10.01.
                For 10.01:
                /usr/bin/chmod 444 /var/opt/audio/asecure_log
                /usr/bin/chmod 444 /var/opt/audio/audio_error_log
=========================================
HPSBUX0104-149 Sec. Vulnerability in pcltotiff
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.01,
           10.10, 10.20, and 10.26.
MANUAL ACTIONS: Yes - NonUpdate
                /sbin/chmod 555 /opt/sharedprint/bin/pcltotiff
                /sbin/chmod o+r /usr/lib/X11/fonts/ifo.st/typefaces
=========================================
HPSBUX0106-155 Security Vulnerability in CIFS/9000
PLATFORM: HP 9000 servers running CIFS/9000 Server version A.01.06,
          or lower.
MANUAL ACTIONS: Yes - Update plus other actions
                Upgrade to CIFS/9000 Server A.01.06 and install
                patch PHNE_24164 or
                upgrade to CIFS/9000 Server A.01.07.
=========================================
HPSBUX0107-157 Security Vulnerability in CIFS/9000 Server #2
PLATFORM: HP 9000 servers running CIFS/9000 Server version A.01.07 or
          lower; HP 3000 servers running Samba/iX
MANUAL ACTIONS: Yes - NonUpdate
                Edit the smb.conf file to remove all occurances
                of the macro "%m". See below for details.
=========================================
HPSBUX0108-164 Sec. Vulnerability in CIFS/9000 Server password
PLATFORM: HP 9000 servers running CIFS/9000 Server version
          A.01.07, or lower.
MANUAL ACTIONS: Yes - NonUpdate
                Ensure that the "passwd program" option contains the
                %u substitution string as follows:
                      passwd program = /bin/passwd %u.
=========================================
HPSBUX0110-173 Sec. Vulnerability in Tomcat 3.2.1 (VVOS)
PLATFORM: HP9000 Servers running HP-UX 11.04 (VVOS),
          Virtualvault A.04.50 only.
MANUAL ACTIONS: Yes - Update plus other actions
                Apply patches and install Tomcat 3.2.3
                runtime JAR files.
=========================================
HPSBUX0110-174 Sec. Vulnerability in JRE
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.20 and
           11.x only. This security bulletin applies to Java
           on HP-UX. It does not cover software shipped on Linux
           or Windows/NT.
MANUAL ACTIONS: Yes - Update
                Update to:
                JDK and JRE 1.2.2.10 or higher for HP-UX 11.x.
                JDK and JRE 1.3.0.02 or higher for HP-UX 11.x.
                JDK and JRE 1.3.1.01 or higher for HP-UX 11.x.
=========================================
HPSBUX0201-181 Sec. Vulnerability in IPFilter/9000
PLATFORM: IPFilter/9000 product running on HP-UX 11.00 or 11.11
MANUAL ACTIONS: Yes - Update
                Upgrade to
                IPFilter/9000 version A.03.05.02 or greater
=========================================
HPSBUX0202-182 Sec. Vulnerability in Netscape 6.01
PLATFORM: HP9000 Series 700/800 running HP-UX releases 11.00 and
          11.11.
MANUAL ACTIONS: Yes - Update
                Update to Netscape 6.2.1
=========================================
HPSBUX0202-184 Sec. Vulnerability in SNMP
PLATFORM: HP 9000 Series 700 and Series 800 running HP-UX
          releases 10.X and 11.X
          HP Procurve switches
          HP TopTools Remote Control Card
          JetDirect Firmware
          MC/ServiceGuard, EMS HA Monitors
          Solaris running OpenView or NNM
          Windows/NT running OpenView or NNM
MANUAL ACTIONS: Yes - Update plus other actions
=========================================
HPSBUX0202-185 Sec. Vulnerability with HP AdvanceStack hubs
PLATFORM: HP AdvanceStack J3200A, J3201A, J3202A, J3203A, J3204A,
          J3205A, J3210A with firmware version A.03.07 and
          earlier.
MANUAL ACTIONS: Yes - NonUpdate
                Until a fix is available work around the
                problem by either disabling web access or
                removing the management IP address.
=========================================
HPSBUX0203-186 Sec. Vulnerability in JAVA JRE
PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.20 and
           11.x (including 11.04 - VVOS) only. This security bulletin
           applies to Java on HP-UX (including 11.04 - VVOS). It does
           not cover software shipped on Linux or Windows/NT.
MANUAL ACTIONS: Yes - Update plus other actions
                Update Java:
                JDK/JRE 1.1.8.06 or higher for HP-UX 10.20,
                JDK/JRE 1.2.2.12 or higher for HP-UX 11.x,
                JDK/JRE 1.3.1.00 or higher for HP-UX 11.x.

                JDK/JRE for outside Apache web servers on
                Virtualvault A.04.50 should be upgraded to
                Java version 1.3.1 or higher.

                For the inside administration Apache web
                server on Virtualvault A.04.50, install PHSS_26673.
=========================================
HPSBUX0206-195 Sec. Vulnerability in OpenSSH on HP-UX
PLATFORM: HP 9000 Servers running HP-UX release 11.00, and 11.11
          only with the T1471AA HP-UX Secure Shell product
          installed.
MANUAL ACTIONS: Yes - Update
                Install new binary version A.03.10.003 or
                subsequent, which can be
                found on www.software.hp.com
                under "Internet and Security solutions".

=========================================
HPSBUX0207-197 Sec. Vulnerability in Apache Server Chunk Encoding
PLATFORM: HP9000 Servers running HP-UX release 11.00, 11.04, 11.11
          11.20, and 11.22 with the HP Apache product installed.
          affected OpenView Products:
          Network Node Manager (NNM) 6.01, 6.1, 6.2, 6.31
          running on HP-UX and Solaris
          NNM on Windows NT/W2K is not affected.
          OV Service Information Portal (OVSIP) 1.0, 2.0, 3.0
MANUAL ACTIONS: Yes - NonUpdate
                Install repaired binary.

                For HP-UX 11.00, 11.11, 11.20 and 11.22
                download new product bundles from
                http://www.software.hp.com/ISS_products_list.html

                For HP-UX 11.04, OV NNM 6.2, OV NNM 6.1,
                OV SIP 3.0 apply the applicable patch.
=========================================
HPSBUX0207-200 Sec. Vulnerability in CIFS/9000
PLATFORM: HP9000 systems running CIFS/9000 Client version A.01.06
          or earlier on HP-UX releases 11.00 and 11.11.
MANUAL ACTIONS: Yes - Update
                Update to CIFS/9000 Client version A.01.07,
                or later
=========================================
HPSBUX0207-202 Sec. Vulnerability in BIND 9
PLATFORM: HP9000 Series 700/800 running HP-UX release 11.11 (11i)
          only with the BINDv920.INETSVCS-BIND fileset installed.
MANUAL ACTIONS: Yes - NonUpdate
                Install BIND920v2.depot.
=========================================
HPSBUX0207-204 Sec. Vulnerability in JetDirect EWS
PLATFORM: HP peripherals or printers that have an Embedded Web
           Server (EWS).
MANUAL ACTIONS: Yes - Update
                Update to firmware version X.22.09 or later.
=========================================
HPSBUX0208-207 Sec. Vulnerability in HP Apache Server PHP
PLATFORM: HP9000 Servers running HP-UX release 11.00, 11.11, 11.20,
          and 11.22 with the HP Apache product installed.
MANUAL ACTIONS: Yes - Update
                hp apache-based web server v.1.3.26.03
                             on hp-ux 11.0 and 11i (pa-risc)
                hp apache-based web server v.1.3.26.03
                             on hp-ux 11i version 1.5 and 1.6 (ipf)
                hp apache-based web server v.2.0.39.03
                             on hp-ux 11.0 and 11i (pa-risc)
                hp apache-based web server v.2.0.39.03
                             on hp-ux 11i (pa-risc) for ipv6
                hp apache-based web server v.2.0.39.03
                             on hp-ux 11i version 1.5 and 1.6 (ipf)
=========================================

======================================================
III. Missing or mis-formatted "MANUAL ACTIONS - Non-HP-UX only"
======================================================

The MANUAL ACTIONS section in each of the following bulletins
was either missing or was not in the new format. These
bulletins will not be sent to the e-mail distribution.

=========================================
HPSBUX0006-116 Sec. Vulnerability in Web JetAdmin 6.0
PLATFORM: Microsoft Windows NT 4.0 / Windows 2000 only.
MANUAL ACTIONS: Non-HP-UX only
                Install latest version of Web JetAdmin 6.0
                (6.0.1233)
=========================================
HPSBUX0208-212 Sec. Vulnerability in OpenSSL for JetDirect
PLATFORM: HP Jetdirect Print Servers with Jetdirect Firmware
          Versions X.22.00 through X.23.99 ( where X = L through U )
          only.
MANUAL ACTIONS: Non-HP-UX only
                Until a firmware update is available, disable the
                Embedded Web Server on Jetdirect Print Servers
                with Jetdirect Firmware Versions X.22.00 through
                X.23.99 ( where X = L through U ).
=========================================

======================================================
IV. Missing or mis-formatted "MANUAL ACTIONS - No"
======================================================

The MANUAL ACTIONS section in each of the following bulletins
was either missing or was not in the new format. These
bulletins will not be sent to the e-mail distribution.

All the following bulletins now have:

MANUAL ACTIONS: No

HPSBUX9311-001 HPSBUX9311-002 HPSBUX9402-003 HPSBUX9402-005
HPSBUX9402-006 HPSBUX9404-008 HPSBUX9405-009 HPSBUX9406-013
HPSBUX9407-015 HPSBUX9409-017 HPSBUX9410-018 HPSBUX9411-019
HPSBUX9501-020 HPSBUX9502-022 HPSBUX9502-023 HPSBUX9502-024
HPSBUX9503-025 HPSBUX9504-027 HPSBUX9602-029 HPSBUX9604-031
HPSBUX9607-032 HPSBUX9608-036 HPSBUX9608-037 HPSBUX9609-038
HPSBUX9610-040 HPSBUX9612-043 HPSBUX9701-044 HPSBUX9701-045
HPSBUX9701-046 HPSBUX9701-047 HPSBUX9701-048 HPSBUX9701-049
HPSBUX9701-050 HPSBUX9701-051 HPSBUX9702-052 HPSBUX9702-053
HPSBUX9702-055 HPSBUX9702-056 HPSBUX9704-057 HPSBUX9704-059
HPSBUX9704-061 HPSBUX9707-064 HPSBUX9707-067 HPSBUX9710-070
HPSBUX9710-071 HPSBUX9711-073 HPSBUX9801-075 HPSBUX9801-076
HPSBUX9803-077 HPSBUX9807-079 HPSBUX9807-081 HPSBUX9808-082
HPSBUX9808-083 HPSBUX9808-084 HPSBUX9810-086 HPSBUX9811-087
HPSBUX9811-088 HPSBUX9812-089 HPSBUX9812-090 HPSBUX9902-091
HPSBUX9903-092 HPSBUX9903-093 HPSBUX9903-094 HPSBUX9903-095
HPSBUX9903-096 HPSBUX9906-098 HPSBUX9906-099 HPSBUX9907-101
HPSBUX9908-102 HPSBUX9910-104 HPSBUX9912-106 HPSBUX9912-107
HPSBUX0001-108 HPSBUX0004-112 HPSBUX0005-113 HPSBUX0006-115
HPSBUX0007-117 HPSBUX0008-118 HPSBUX0008-119 HPSBUX0009-120
HPSBUX0009-121 HPSBUX0009-122 HPSBUX0010-123 HPSBUX0010-124
HPSBUX0010-125 HPSBUX0010-127 HPSBUX0011-129 HPSBUX0011-130
HPSBUX0012-134 HPSBUX0012-135 HPSBUX0101-136 HPSBUX0101-137
HPSBUX0101-138 HPSBUX0102-139 HPSBUX0102-140 HPSBUX0102-142
HPSBUX0102-143 HPSBUX0103-146 HPSBUX0103-147 HPSBUX0104-148
HPSBUX0105-151 HPSBUX0106-152 HPSBUX0106-153 HPSBUX0106-154
HPSBUX0107-156 HPSBUX0107-158 HPSBUX0107-159 HPSBUX0107-160
HPSBUX0107-161 HPSBUX0107-162 HPSBUX0108-163 HPSBUX0108-165
HPSBUX0109-166 HPSBUX0109-167 HPSBUX0110-168 HPSBUX0110-169
HPSBUX0110-170 HPSBUX0110-171 HPSBUX0110-172 HPSBUX0111-175
HPSBUX0111-176 HPSBUX0112-177 HPSBUX0201-179 HPSBUX0202-183
HPSBUX0203-189 HPSBUX0204-190 HPSBUX0204-191 HPSBUX0205-192
HPSBUX0205-193 HPSBUX0205-194 HPSBUX0207-196 HPSBUX0207-198
HPSBUX0207-201 HPSBUX0208-206 HPSBUX0208-208 HPSBUX0208-210
HPSBUX0208-211 HPSBUX0208-213
======================================================

B. Recommended solution

    If bulletins are maintained locally, optionally download
    new copies. Only bulletins with incorrect MANUAL ACTIONS
    fields will be mailed out. Bulletins which were revised
    to add a missing MANUAL ACTIONS field or to correct the
    format of the MANUAL ACTIONS field will not be mailed
    out for this revision.

C. To subscribe to automatically receive future NEW HP Security
Bulletins from the HP IT Resource Center via electronic
mail, do the following:

Use your browser to get to the HP IT Resource Center page
at:

http://itrc.hp.com

    Use the 'Login' tab at the left side of the screen to login
    using your ID and password. Use your existing login or the
    "Register" button at the left to create a login, in order to
    gain access to many areas of the ITRC. Remember to save the
    User ID assigned to you, and your password.

In the left most frame select "Maintenance and Support".

    Under the "Notifications" section (near the bottom of
    the page), select "Support Information Digests".

    To -subscribe- to future HP Security Bulletins or other
    Technical Digests, click the check box (in the left column)
    for the appropriate digest and then click the "Update
    Subscriptions" button at the bottom of the page.

To -review- bulletins already released, select the link
(in the middle column) for the appropriate digest.

    To -gain access- to the Security Patch Matrix, select
    the link for "The Security Bulletins Archive". (near the
    bottom of the page) Once in the archive the third link is
    to the current Security Patch Matrix. Updated daily, this
    matrix categorizes security patches by platform/OS release,
    and by bulletin topic. Security Patch Check completely
    automates the process of reviewing the patch matrix for
    11.XX systems.

    For information on the Security Patch Check tool, see:
    http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/
    displayProductInfo.pl?productNumber=B6834AA

The security patch matrix is also available via anonymous
ftp:

ftp://ftp.itrc.hp.com/export/patches/hp-ux_patch_matrix/

On the "Support Information Digest Main" page:
click on the "HP Security Bulletin Archive".

D. To report new security vulnerabilities, send email to

security-alerthp.com

    Please encrypt any exploit information using the
    security-alert PGP key, available from your local key
    server, or by sending a message with a -subject- (not body)
    of 'get key' (no quotes) to security-alerthp.com.

------------------------------------------------------------------

(c)Copyright 2002 Hewlett-Packard Company
Hewlett-Packard Company shall not be liable for technical or
editorial errors or omissions contained herein. The information
in this document is subject to change without notice.
Hewlett-Packard Company and the names of HP products referenced
herein are trademarks and/or service marks of Hewlett-Packard
Company. Other product and company names mentioned herein may be
trademarks and/or service marks of their respective owners.

________________________________________________________________
-----End of Document ID: HPSBUX0301-236--------------------------------------

Document ID: HPSBUX0201-180
Date Loaded: 20020122
Title: Sec. Vulnerability with WU-FTPD 2.6 (rev.1)

TEXT

--------------------------------------------------------------------
**REVISED 01**
Source: HEWLETT-PACKARD COMPANY
SECURITY BULLETIN: HPSBUX0201-180
Originally issued: 22 January 2002
Last Revised: 10 January 2003

--------------------------------------------------------------------

------------------------------------------------------------------
PROBLEM: Security vulnerability in WU-FTPD 2.6., Format String.
CVE identifier: CAN-2001-0187
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2001-0187

PLATFORM: HP9000 Series 700/800 running HP-UX releases 11.0 and 11.11.

DAMAGE: A remote user may execute arbitrary code on the server.

SOLUTION: Use the latest WEB upgrade which will upgrade WU-FTPD to
version 2.6 (rev b01.002)

**REVISED 01**
MANUAL ACTIONS: Yes - Update
Upgrade WU-FTPD to version 2.6 (rev b01.002).

AVAILABILITY: It is available now for 11.0 and 11.11.

CHANGE SUMMARY: Revision 01 correct MANUAL ACTIONS field

------------------------------------------------------------------
A. Background
   There is a format string vulnerability in wu-ftpd.
   The Common Vulnerabilities and Exposures (CVE) group
   has assigned the identifier: CAN-2001-0187

http://www.securityfocus.com/bid/2296

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2001-0187

B. Fixing the problem
To determine if wu-ftpd version 2.6 is installed on a system:

what /usr/lbin/ftpd | grep wuftpd-2.6

If version 2.6 IS installed, then apply the latest web
upgrade now. Registration for the download is necessary:

http://www.software.hp.com/

and search on "wu-ftpd" (without the quotes)

or:

http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo
.pl?productNumber=WUFTPD26

   If revision 2.6 is NOT installed, then make sure you have
   installed the current patches for HP Security Bulletin
   "HPSBUX0107-162 Security Vulnerability in ftpd".

C. To subscribe to automatically receive future NEW HP Security
Bulletins from the HP IT Resource Center via electronic
mail, do the following:

Use your browser to get to the HP IT Resource Center page
at:

http://itrc.hp.com

In the left most frame select "Maintenance and Support".

Under the "Notifications" section (near the bottom of
the page), select "Support Information Digests".

    To -subscribe- to future HP Security Bulletins or other
    Technical Digests, click the check box (in the left column)
    for the appropriate digest and then click the "Update
    Subscriptions" button at the bottom of the page.

    To -review- bulletins already released, select the link
    (in the middle column) "Search Technical Knowledge
    Database".

    To -gain access- to the Security Patch Matrix, or the
    "The Security Bulletins Archive" select the link for
    "The Security Bulletins Archive" (near the bottom of
    the page). Once in the archive the third link is
    to the current Security Patch Matrix. Updated daily, this
    matrix categorizes security patches by platform/OS release,
    and by bulletin topic. Security Patch Check completely
    automates the process of reviewing the patch matrix for
    11.XX systems.

    For information on the Security Patch Check tool, see:
    http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/
    displayProductInfo.pl?productNumber=B6834AA"

The security patch matrix is also available via anonymous
ftp:

ftp.itrc.hp.com:~ftp/export/patches/hp-ux_patch_matrix

On the "Support Information Digest Main" page:
click on the "HP Security Bulletin Archive".

D. To report new security vulnerabilities, send email to

security-alerthp.com

    Permission is granted for copying and circulating this
    Bulletin to Hewlett-Packard (HP) customers (or the Internet
    community) for the purpose of alerting them to problems,
    if and only if, the Bulletin is not edited or changed in
    any way, is attributed to HP, and provided such reproduction
    and/or distribution is performed for non-commercial purposes.

Any other use of this information is prohibited. HP is not
liable for any misuse of this information by any third party.
________________________________________________________________
-----End of Document ID: HPSBUX0201-180--------------------------------------

Document ID: HPSBUX0110-172
Date Loaded: 20011016
Title: Sec. Vulnerability in telnetd (rev.1)

TEXT

-----------------------------------------------------------------
**REVISED 01**
Source: HEWLETT-PACKARD COMPANY
SECURITY BULLETIN: HPSBUX0110-172
Originally issued: 16 October 2001
Last Revised: 10 January 2003

-----------------------------------------------------------------

------------------------------------------------------------------
PROBLEM: Systems running telnetd may permit unauthorized remote
access.
See: http://www.cert.org/advisories/CA-2001-21.html

         This vulnerability has been assigned the identifier
         CAN-2001-0554 by the Common Vulnerabilities and Exposures
         (CVE) group:
     http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2001-0554

PLATFORM: HP9000 Servers running HP-UX releases 10.X only.

DAMAGE: An intruder can potentially execute arbitrary code
with the privileges of the telnetd process.

SOLUTION: Apply the following patches to the release specified.

        10.01 PHNE_24820 ,
        10.10 PHNE_24820 ,
        10.20 PHNE_24821 ,
    SIS 10.20 PHNE_24822 (Telnet kerberos Patch),
        10.24 PHNE_25217.

**REVISED 01**
Note: The Secure Internet Services (SIS) product, if
enabled, has to be disabled before the installation
or removal of PHNE_24822 (Telnet kerberos Patch).

**REVISED 01**
MANUAL ACTIONS: No

AVAILABILITY: The patches are available now from http://itrc.hp.com.

CHANGE SUMMARY: Revision 01 correct MANUAL ACTIONS field
------------------------------------------------------------------
A. Background
     A potential remotely exploitable buffer overflow in telnetd has
     been reported to Hewlett-Packard Company. It is unique to HP-UX
     releases 10.X only.

B. Fixing the problem
     Disable telnetd (by commenting out the /etc/inetd.conf entry for
     telnetd and running '/usr/sbin/inetd -c') if telentd is not needed
     on your system.

Install the appropriate patch from the list below.

C. Recommended solution

Apply the following patches to the release specified.

        10.01 PHNE_24820 ,
        10.10 PHNE_24820 ,
        10.20 PHNE_24821 ,
    SIS 10.20 PHNE_24822 (Telnet kerberos Patch),
        10.24 PHNE_25217.

All patches are available now from http://itrc.hp.com.

D. To subscribe to automatically receive future NEW HP Security
Bulletins from the HP IT Resource Center via electronic
mail, do the following:

Use your browser to get to the HP IT Resource Center page
at:

http://itrc.hp.com

In the left most frame select "Maintenance and Support".

Under the "Notifications" section (near the bottom of
the page), select "Support Information Digests".

To -review- bulletins already released, select the link
(in the middle column) for the appropriate digest.

    For information on the Security Patch Check tool, see:
    http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/
    displayProductInfo.pl?productNumber=B6834AA"

The security patch matrix is also available via anonymous
ftp:

ftp.itrc.hp.com:~ftp/export/patches/hp-ux_patch_matrix

On the "Support Information Digest Main" page:
click on the "HP Security Bulletin Archive".

E. To report new security vulnerabilities, send email to

security-alerthp.com

Document ID: HPSBUX0203-187
Date Loaded: 20020318
Title: Sec. Vulnerability in JRE Bytecode Verifier (rev.1)

TEXT

-------------------------------------------------------------------
**REVISED 01**
Source: HEWLETT-PACKARD COMPANY
SECURITY BULLETIN: HPSBUX0203-187
Originally issued: 08 March 2002
Last Revised: 10 January 2003

-------------------------------------------------------------------

-------------------------------------------------------------------
ISSUE: A vulnerability in the Java(TM) Runtime Environment Bytecode
Verifier may be exploited by an untrusted applet to escalate
privileges.

PLATFORM: HP9000 Series 700/800 running HP-UX releases 10.20 and
           11.x only. This security bulletin applies to Java
           on HP-UX. It does not cover software shipped on Linux
           or Windows/NT.

POSSIBLE RESULT: Privileges are escalated improperly.

**REVISED 01**
MANUAL ACTIONS: Yes - Update
                JDK and JRE 1.1.8.06 or higher for HP-UX 10.20.
                JDK and JRE 1.1.8.06 or higher for HP-UX 11.x
                JDK and JRE 1.2.2.12 or higher for HP-UX 11.x.
                JDK and JRE 1.3.1.00 or higher for HP-UX 11.x

SOLUTION: Install the latest Java releases, as described below.

AVAILABILITY: These fixed releases are on www.hp.com/go/java now.
They are not available from itrc.hp.com

CHANGE SUMMARY: Revision 01 correct MANUAL ACTIONS field
--------------------------------------------------------------------
A. Background

   A vulnerability in certain versions of the Java(TM) Runtime
   Environment may be exploited by an untrusted applet to escalate
   privileges.

There are no known attacks reported based on this vulnerability
to the best of Sun's knowledge.

B. Fixing the problem

     Obtain and install the latest releases of the Java products.
     For JDK/JRE 1.1.8, 1.2.2 and JDK/JRE 1.3.0 based releases go to
              www.hp.com/go/java.
     Section C. 1.) below will guide you in determining your
     installed Java version on HP-UX. The vulnerability is
     fixed in releases 1.3.1 and higher. Users of 1.3.0.x will
     need to update to 1.3.1.

     The releases described in HP Security Bulletin #0186, issued
     4 March 2002, also correct the vulnerability described here.
     In other words, the releases in Section C. below will correct
     both vulnerabilities.

C. Recommended solution

         JDK and JRE 1.1.8.06 or higher for HP-UX 10.20 or 11.x.
         JDK and JRE 1.2.2.12 or higher for HP-UX 11.x.
         JDK and JRE 1.3.1.00 or higher for HP-UX 11.x

--------------------------------------------------------------------
HP-UX: Determining Java version information for JDK, JRE, and JPI
--------------------------------------------------------------------
There are two mechanisms to determine which versions of the Java
JDK/SDK (developer kit), JRE (runtime), or JPI (Java Plugin for
Netscape) you have installed.

First, you can use the following command to list the bundle revisions
for any installed Java products:

/usr/sbin/swlist -l bundle | grep -i java

Second, you can ask Java to identify itself by executing the
following:

<path>/bin/java -version
where path is typically

      /opt/java - for Java 1.1
      /opt/java1.2 - for Java 1.2
      /opt/java1.3 - for Java 1.3

but may be an alternate location as specified during setup.

The plugin (JPI) is installed in user's home directories, so
you will need to check its version using the following.

For Java 1.2:

$HOME/.netscape/java/bin/java -version

For Java 1.1, you must use:

what $HOME/.netscape/java/bin/PA_RISC/green_threads/jre

   NOTE: Do not rely on Netscape's Help/About_Plug-ins menu to
         find the version number of the Plugin, because in some
         cases the version number is incorrect.

a.) Unplugging the Plugin (Since the Plugin is manually
installed into Netscape, it must be manually removed as well.)

    If you have a plugin that you wish to remove because it has a
    security issue, in addition to doing a swremove of the product
    you must also do the following for Java 1.1 and Java 1.2:

rm -f $HOME/.netscape/plugins/javaplugin.sl
rm -rf $HOME/.netscape/java

-------------------------------------------------------------------

D. To subscribe to automatically receive future NEW HP Security
Bulletins from the HP IT Resource Center via electronic
mail, do the following:

Use your browser to get to the HP IT Resource Center page
at:

http://itrc.hp.com

In the left most frame select "Maintenance and Support".

To -review- bulletins already released, select the link
(in the middle column) for the appropriate digest.

    For information on the Security Patch Check tool, see:
    http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/
    displayProductInfo.pl?productNumber=B6834AA"

The security patch matrix is also available via anonymous
ftp:

ftp.itrc.hp.com:~ftp/export/patches/hp-ux_patch_matrix

On the "Support Information Digest Main" page:
click on the "HP Security Bulletin Archive".

E. To report new security vulnerabilities, send email to

security-alerthp.com

Any other use of this information is prohibited. HP is not
liable for any misuse of this information by any third party.
_________________________________________________________________
-----End of Document ID: HPSBUX0203-187--------------------------------------

Document ID: HPSBUX0203-188
Date Loaded: 20020318
Title: Sec. Vulnerability in JAVA Web Start ) (rev.1)

TEXT

-------------------------------------------------------------------
**REVISED 01**
Source: HEWLETT-PACKARD COMPANY
SECURITY BULLETIN: HPSBUX0203-188
Originally issued: 18 March 2002
Last Revised: 10 January 2003

-------------------------------------------------------------------

-------------------------------------------------------------------
ISSUE: A vulnerability in Java(TM) Web Start may allow an application
using it to gain access to restricted resources.

PLATFORM: HP9000 Series 700/800 running HP-UX releases 11.x only.
This security bulletin applies to Java Web Start on HP-UX.
It does not cover software shipped on Linux or Windows/NT.

POSSIBLE RESULT: Restricted resources are accessed improperly.

**REVISED 01**
MANUAL ACTIONS: Yes - Update
Web Start 1.0.1.01 or higher for HP-UX 11.x.

SOLUTION: Install the latest Java Web Start release, as described below.

AVAILABILITY: These fixed releases are on www.hp.com/go/java now.
They are not available from itrc.hp.com

CHANGE SUMMARY: Revision 01 correct MANUAL ACTIONS field
--------------------------------------------------------------------
A. Background

A vulnerability in certain versions of Java(TM) Web Start may be
exploited by an application to access restricted resources.

There are no known attacks reported based on this vulnerability
to the best of Sun's knowledge.

B. Fixing the problem

     Obtain and install the latest release of the Java Web Start
     product. This will be found by going to
              www.hp.com/go/java.
     Section C. 1.) below will guide you in determining your
     installed Java Web Start version on HP-UX. The vulnerability is
     fixed in release 1.0.1.01 or higher.

C. Recommended solution

Web Start 1.0.1.01 or higher for HP-UX 11.x.

--------------------------------------------------------------------
HP-UX: Determining Java version information for Java Web Start
--------------------------------------------------------------------
To find the version string, execute Java Web Start:

<installdir>/javaws/javaws
then click on Help -> About Java Web Start menu.

-------------------------------------------------------------------

D. To subscribe to automatically receive future NEW HP Security
Bulletins from the HP IT Resource Center via electronic
mail, do the following:

Use your browser to get to the HP IT Resource Center page
at:

http://itrc.hp.com

In the left most frame select "Maintenance and Support".

Under the "Notifications" section (near the bottom of
the page), select "Support Information Digests".

To -review- bulletins already released, select the link
(in the middle column) for the appropriate digest.

    For information on the Security Patch Check tool, see:
    http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/
    displayProductInfo.pl?productNumber=B6834AA"

The security patch matrix is also available via anonymous
ftp:

ftp.itrc.hp.com:~ftp/export/patches/hp-ux_patch_matrix

On the "Support Information Digest Main" page:
click on the "HP Security Bulletin Archive".

E. To report new security vulnerabilities, send email to

security-alerthp.com

Document ID: HPSBUX0207-205
Date Loaded: 20020728
Title: RFC 1948 ISN randomization is now available (rev.1)

TEXT

-----------------------------------------------------------------
**REVISED 01**
Source: HEWLETT-PACKARD COMPANY
SECURITY BULLETIN: HPSBUX0207-205
Originally issued: 29 July 2002
Last Revised: 10 January 2003

-----------------------------------------------------------------
NOTICE: There are no restrictions for distribution of this Bulletin
provided that it remains complete and intact.

The information in the following Security Bulletin should be
acted upon as soon as possible. Hewlett-Packard Company will
not be liable for any consequences to any customer resulting
from customer's failure to fully implement instructions in this
Security Bulletin as soon as possible.
------------------------------------------------------------------
ANNOUNCEMENT: RFC 1948 ISN randomization is now available.

PLATFORM: HP9000 Series 700/800 running HP-UX releases 11.00,
11.04 and 11.11.

DAMAGE: Possible increase in privilege

SOLUTION: Apply the appropriate patch as follows:

         for HP randomization on releases:
            HP-UX 11.00: PHNE_22397 or subsequent,
            HP-UX 11.11: default mode.

         for RFC 1948 ISN randomization
            HP-UX 11.00: PHNE_26771 or subsequent,
            HP-UX 11.04: PHNE_26101 or subsequent,
            HP-UX 11.11: PHNE_25644 or subsequent.

**REVISED 01**
MANUAL ACTIONS: Yes - NonUpdate
Install patch and enable randomization.

AVAILABILITY: All patches are available now.

CHANGE SUMMARY: Revision 01 correct MANUAL ACTIONS field

------------------------------------------------------------------
A. Background
As discussed in CERT Advisory CA-2001-09, Hewlett-Packard now
provides RFC1948 compliant randomization.

B. Recommended solution
The following tcp randomizations are now available:

        HP-UX releases 11.00, 11.04, and 11.11 (11i):
             HP randomization
             RFC 1948 ISN randomization

=================================================================
To enable tcp randomization on HP-UX 11.00, 11.04, and 11.11(11i):
=================================================================

HP randomization

     HP-UX release 11.00:
     Install PHNE_22397 or subsequent. The HP randomization will
     then be the default tcp randomization.

NOTE: This patch has dependencies.

     HP-UX release 11.11 (11i):
     No patch is required. The HP randomization has always been
     implemented in HP-UX 11.11 (11i) and is the default tcp
     randomization.

RFC 1948 ISN randomization

     HP-UX 11.00: Apply PHNE_26771 or subsequent.
     HP-UX 11.04: Apply PHNE_26101 or subsequent.
     HP-UX 11.11 (11i): Apply PHNE_25644 or subsequent.

     Once the appropriate patch has been applied the RFC 1948 ISN
     randomization can be enabled on HP-UX 11.00, 11.04 and 11.11
     by executing the following command as root:

         ndd -set /dev/tcp tcp_isn_passphrase <secret passphrase>
              where <secret passphrase> is any length character
              string. Only the first 32 characters will be
              retained. If the passphrase is changed the system
              should be rebooted.

     NOTE: RFC 1948 ISN randomization is not available on
           HP-UX release 10.20. Customers who want RFC 1948
           ISN randomization should upgrade to HP-UX 11.X and
           apply necessary patches as discussed herein.

C. To subscribe to automatically receive future NEW HP Security
Bulletins from the HP IT Resource Center via electronic
mail, do the following:

Use your browser to get to the HP IT Resource Center page
at:

http://itrc.hp.com

In the left most frame select "Maintenance and Support".

Under the "Notifications" section (near the bottom of
the page), select "Support Information Digests".

To -review- bulletins already released, select the link
(in the middle column) for the appropriate digest.

    For information on the Security Patch Check tool, see:
    http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/
    displayProductInfo.pl?productNumber=B6834AA

The security patch matrix is also available via anonymous
ftp:

ftp://ftp.itrc.hp.com/export/patches/hp-ux_patch_matrix/

On the "Support Information Digest Main" page:
click on the "HP Security Bulletin Archive".

D. To report new security vulnerabilities, send email to

security-alerthp.com

------------------------------------------------------------------

________________________________________________________________
-----End of Document ID: HPSBUX0207-205--------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]