HP Operations Agent and Performance Agent Local Unauthorized Access Vulnerability
BID:50761
Info
HP Operations Agent and Performance Agent Local Unauthorized Access Vulnerability
| Bugtraq ID: | 50761 |
| Class: | Unknown |
| CVE: |
CVE-2011-4160 |
| Remote: | No |
| Local: | Yes |
| Published: | Nov 22 2011 12:00AM |
| Updated: | Dec 06 2011 09:57PM |
| Credit: | The vendor |
| Vulnerable: |
HP Performance Agent 5.0 HP Performance Agent 4.73 HP Operations Agent 11.01 HP Operations Agent 11.0 |
| Not Vulnerable: | |
Discussion
HP Operations Agent and Performance Agent Local Unauthorized Access Vulnerability
HP Operations Agent and Performance Agent are prone to a local unauthorized-access vulnerability.
A local attacker can exploit this issue to access an arbitrary directory on the affected device.
HP Operations Agent v11.00 and Performance Agent v4.73, v5.0 for AIX, HP-UX, Linux, and Solaris are vulnerable; other versions may also be affected.
HP Operations Agent and Performance Agent are prone to a local unauthorized-access vulnerability.
A local attacker can exploit this issue to access an arbitrary directory on the affected device.
HP Operations Agent v11.00 and Performance Agent v4.73, v5.0 for AIX, HP-UX, Linux, and Solaris are vulnerable; other versions may also be affected.
Exploit / POC
HP Operations Agent and Performance Agent Local Unauthorized Access Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
HP Operations Agent and Performance Agent Local Unauthorized Access Vulnerability
Solution:
Updates are available; please see the references for more information.
Solution:
Updates are available; please see the references for more information.
References
HP Operations Agent and Performance Agent Local Unauthorized Access Vulnerability
References:
References: