|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[SA20894] HP Tru64 UNIX and HP Internet Express Perl Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Fri Jun 30 2006 - 04:17:05 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
----------------------------------------------------------------------
Reverse Engineer Wanted
Secunia offers a Security Specialist position with emphasis on
reverse engineering of software and exploit code, auditing of
source code, and analysis of vulnerability reports.
http://secunia.com/secunia_security_specialist/
----------------------------------------------------------------------
TITLE:
HP Tru64 UNIX and HP Internet Express Perl Vulnerability
SECUNIA ADVISORY ID:
SA20894
VERIFY ADVISORY:
http://secunia.com/advisories/20894/
CRITICAL:
Moderately critical
IMPACT:
DoS, System access
WHERE:
From remote
OPERATING SYSTEM:
HP Tru64 UNIX 5.x
http://secunia.com/product/2/
SOFTWARE:
HP Internet Express 6.x
http://secunia.com/product/2040/
DESCRIPTION:
HP has acknowledged a vulnerability in HP Tru64 UNIX and HP Internet
Express running Perl, which can be exploited by malicious people to
cause a DoS (Denial of Service) and potentially compromise a
vulnerable Perl application.
For more information:
SA17802
The vulnerability has been reported in the following products with
Perl version 5.8.2 and prior:
* HP Tru64 UNIX 5.1B-3
* HP Tru64 UNIX 5.1B-2/PK4
* HP Tru64 UNIX 5.1A PK6
* HP Internet Express 6.3 for HP Tru64 UNIX
* HP Internet Express 6.4 for HP Tru64 UNIX
* HP Tru64 UNIX Associated Products CD (APCD) for HP Tru64 UNIX v
5.1B-3 (BL25) and earlier
SOLUTION:
Apply patch kit PERL_V51BB26-ES-20060612.
HP Tru64 UNIX Version 5.1B-3:
http://www.itrc.hp.com/service/patch/patchDetail.do?patchid=PERL_V51BB26-ES-20060612
MD5 Checksum: 49bb5de02b3236a0991698ec5f3ca648
HP Internet Express Version 6.5:
http://h30097.www3.hp.com/internet/prod_sol.htm
ORIGINAL ADVISORY:
HPSBTU02125 SSRT061105:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00686865
OTHER REFERENCES:
SA17802:
http://secunia.com/advisories/17802/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]