From: Secunia Security Advisories (sec-advsecunia.com)
Date: Fri Jun 27 2003 - 07:45:40 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
HP Tru64 ksh Denial of Service Vulnerability

READ ONLINE:
http://www.secunia.com/advisories/9130/

CRITICAL:
Not critical

IMPACT:
DoS

WHERE:
Local system

OPERATING SYSTEM:
HP Tru64 UNIX 5.x

DESCRIPTION:
HP has reported a vulnerability in Tru64, which can be exploited by
malicious users to cause a DoS (Denial of Service).

The vulnerability is caused due to an error in "ksh". The process
doesn't terminate if a user doesn't close a telnet session properly,
which can result in consumption of all CPU resources.

SOLUTION:
Apply ERP kit.

HP Tru64 UNIX 5.1 PK6 (BL20):
http://ftp.support.compaq.com/patches/public/unix/v5.1/t64v51b20-c0181200-19080-e-20030625.tar

HP Tru64 UNIX 5.1A PK3 (BL3):
http://ftp.support.compaq.com/patches/public/unix/v5.1a/t64v51ab3-c0125800-19078-e-20030625.tar

HP Tru64 UNIX 5.1A PK4 (BL21):
http://ftp.support.compaq.com/patches/public/unix/v5.1a/t64v51ab21-c0125600-19079-e-20030625.tar

HP Tru64 UNIX 5.1B PK1 (BL1):
http://ftp.support.compaq.com/patches/public/unix/v5.1b/t64v51bb1-c0017400-19077-e-20030625.tar

ORIGINAL ADVISORY:
http://ftp.support.compaq.com/patches/public/Readmes/unix/t64v51b20-c0181200-19080-e-20030625.README

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]