7.8 - HPSBMA02373 SSRT071467

Executive Summary

Summary
Title	HP Insight Diagnostics Running on Linux and Windows, Remote Unauthorized Access to Files

Informations
Name	HPSBMA02373 SSRT071467	First vendor Publication	2008-09-29
Vendor	HP	Last vendor Modification	2008-10-21
Severity (Vendor)	N/A	Revision	2

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:N/A:N)
Cvss Base Score	7.8	Attack Range	Network
Cvss Impact Score	6.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A potential security vulnerability has been identified with HP Insight Diagnostics running on Linux and Windows. The vulnerability could be remotely exploited to gain unauthorized access to files.

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01561336

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-264	Permissions, Privileges, and Access Controls

CPE : Common Platform Enumeration

Type	Description	Count
Application	Hp Insight Diagnostics cpe:2.3:a:hp:insight_diagnostics:7.9.1.2401::online::::: cpe:2.3:a:hp:insight_diagnostics:7.9.1.2401:unknown:online_windows_server_2003_x64:::::* cpe:2.3:a:hp:insight_diagnostics:7.9.1.2401:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.9.1.2401:online_windows_server_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.9.1.2401:online_windows_server_2003_x64:::::: cpe:2.3:a:hp:insight_diagnostics:7.9.1-15:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.9.1-15::online::::: cpe:2.3:a:hp:insight_diagnostics:7.9.0.2359::online::::: cpe:2.3:a:hp:insight_diagnostics:7.9.0.2359:unknown:online_windows_server_2003_x64:::::* cpe:2.3:a:hp:insight_diagnostics:7.9.0.2359:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.9.0.2359:online_windows_server_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.9.0.2359:online_windows_server_2003_x64:::::: cpe:2.3:a:hp:insight_diagnostics:7.9.0-105:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.9.0-105::online::::: cpe:2.3:a:hp:insight_diagnostics:7.9.0_rev_a:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.9.0_rev_a:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.9.0:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.9.0:::::::* cpe:2.3:a:hp:insight_diagnostics:7.9.0:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.8.0.2257::online::::: cpe:2.3:a:hp:insight_diagnostics:7.8.0.2257:unknown:online_windows_server_2003_x64:::::* cpe:2.3:a:hp:insight_diagnostics:7.8.0.2257:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.8.0.2257:online_windows_server_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.8.0.2257:online_windows_server_2003_x64:::::: cpe:2.3:a:hp:insight_diagnostics:7.8.0-159:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.8.0-159::online::::: cpe:2.3:a:hp:insight_diagnostics:7.7.101_2097:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.7.101_2097:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.7.0.2112::online::::: cpe:2.3:a:hp:insight_diagnostics:7.7.0.2112:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.7.0.2112:unknown:online_windows_server_2003_x64:::::* cpe:2.3:a:hp:insight_diagnostics:7.7.0.2112:online_windows_server_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.7.0.2112:online_windows_server_2003_x64:::::: cpe:2.3:a:hp:insight_diagnostics:7.7.0-142:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.7.0-142::online::::: cpe:2.3:a:hp:insight_diagnostics:7.7.0-142:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:7.7.0_rev_b:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.7.0_rev_b:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.7.0:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.7.0:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.6.2_rev_a:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.6.2_rev_a:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.6.1:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.6.1:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.6.0.1984::online::::: cpe:2.3:a:hp:insight_diagnostics:7.6.0.1984:unknown:online_windows_server_2003_x64:::::* cpe:2.3:a:hp:insight_diagnostics:7.6.0.1984:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.6.0.1984:unknown:online_windows_2000:::::* cpe:2.3:a:hp:insight_diagnostics:7.6.0.1984:online_windows_2000:::::: cpe:2.3:a:hp:insight_diagnostics:7.6.0.1984:online_windows_2003_x64:::::: cpe:2.3:a:hp:insight_diagnostics:7.6.0.1984:online_windows_server_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.6.0-23:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.6.0-23::online::::: cpe:2.3:a:hp:insight_diagnostics:7.6.0-23:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:7.6.0:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.6.0:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.5.1681::online::::: cpe:2.3:a:hp:insight_diagnostics:7.5.5.1681:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.5.1681:unknown:online_windows_2000:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.5.1681:unknown:online_windows_server_2003_x64:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.5.1681:online_windows_2000:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.5.1681:online_windows_2003_x64:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.5.1681:online_windows_server_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.5-1:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.5-1::online::::: cpe:2.3:a:hp:insight_diagnostics:7.5.5-1:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.4:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.4:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.2:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.2:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.0.1679::online::::: cpe:2.3:a:hp:insight_diagnostics:7.5.0.1679:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.0.1679:unknown:online_windows_server_2003_x64:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.0.1679:unknown:online_windows_2000:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.0.1679:online_windows_2000:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.0.1679:online_windows_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.0.1679:online_windows_2003_x64:::::: cpe:2.3:a:hp:insight_diagnostics:7.5.0-14:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.5.0-14::online::::: cpe:2.3:a:hp:insight_diagnostics:7.5.0-14:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:7.4.1:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.4.1:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.4.0.1570::online::::: cpe:2.3:a:hp:insight_diagnostics:7.4.0.1570:unknown:online_windows_2000:::::* cpe:2.3:a:hp:insight_diagnostics:7.4.0.1570:unknown:online_windows_server_2003_x64:::::* cpe:2.3:a:hp:insight_diagnostics:7.4.0.1570:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.4.0.1570:online_windows_2000:::::: cpe:2.3:a:hp:insight_diagnostics:7.4.0.1570:online_windows_2003_x64:::::: cpe:2.3:a:hp:insight_diagnostics:7.4.0.1570:online_windows_server_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.4.0-11:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.4.0-11::online::::: cpe:2.3:a:hp:insight_diagnostics:7.4.0-11:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:7.4.0:::::::* cpe:2.3:a:hp:insight_diagnostics:7.3.0:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.3.0:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.0.2_a:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:7.0.2_a:offline:::::: cpe:2.3:a:hp:insight_diagnostics:7.0.1.1219::online::::: cpe:2.3:a:hp:insight_diagnostics:7.0.1.1219:unknown:online_windows_2000:::::* cpe:2.3:a:hp:insight_diagnostics:7.0.1.1219:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.0.1.1219:online_windows_2000:::::: cpe:2.3:a:hp:insight_diagnostics:7.0.1.1219:online_windows_server_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.0.1-8:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.0.1-8::online::::: cpe:2.3:a:hp:insight_diagnostics:7.0.1-8:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:7.0.0.1198::online::::: cpe:2.3:a:hp:insight_diagnostics:7.0.0.1198:unknown:online_windows_2000:::::* cpe:2.3:a:hp:insight_diagnostics:7.0.0.1198:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:7.0.0.1198:online_windows_2000:::::: cpe:2.3:a:hp:insight_diagnostics:7.0.0.1198:online_windows_2003:::::: cpe:2.3:a:hp:insight_diagnostics:7.0.0-30:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:7.0.0-30::online::::: cpe:2.3:a:hp:insight_diagnostics:7.0.0-30:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:6.5.0_a:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:6.5.0_a:offline:::::: cpe:2.3:a:hp:insight_diagnostics:6.4.1_a:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:6.4.1_a:offline:::::: cpe:2.3:a:hp:insight_diagnostics:6.3.1.887::online::::: cpe:2.3:a:hp:insight_diagnostics:6.3.1.887:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:6.3.1.887:offline:::::: cpe:2.3:a:hp:insight_diagnostics:6.3.1-1:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:6.3.1-1::online::::: cpe:2.3:a:hp:insight_diagnostics:6.3.1-1:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:6.3.0.878::online::::: cpe:2.3:a:hp:insight_diagnostics:6.3.0.878:unknown:online_windows_2000:::::* cpe:2.3:a:hp:insight_diagnostics:6.3.0.878:unknown:online_windows_server_2003:::::* cpe:2.3:a:hp:insight_diagnostics:6.3.0.878:online_windows_2000:::::: cpe:2.3:a:hp:insight_diagnostics:6.3.0.878:online_windows_2003:::::: cpe:2.3:a:hp:insight_diagnostics:6.3.0-15:unknown:online_linux:::::* cpe:2.3:a:hp:insight_diagnostics:6.3.0-15::online::::: cpe:2.3:a:hp:insight_diagnostics:6.3.0-15:online_linux:::::: cpe:2.3:a:hp:insight_diagnostics:6.2.1_a:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:6.2.1_a:offline:::::: cpe:2.3:a:hp:insight_diagnostics:6.0.0_a:unknown:offline:::::* cpe:2.3:a:hp:insight_diagnostics:6.0.0_a:offline:::::: cpe:2.3:a:hp:insight_diagnostics::::::::	136

Open Source Vulnerability Database (OSVDB)

Id	Description
48641	HP Insight Diagnostics Unspecified Remote File Access

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	136
osvdb(s)	1

	Related
7.8	CVE-2008-3542
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0398s

Facebook rss twitter linkedin mail