Executive Summary
Summary | |
---|---|
Title | HP ProCurve 5400 zl Switch, Compact flash card contains trojan malware |
Informations | |||
---|---|---|---|
Name | HPSBPV02754 SSRT100803 | First vendor Publication | 2012-04-10 |
Vendor | HP | Last vendor Modification | 2012-04-26 |
Severity (Vendor) | N/A | Revision | 2 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:L/AC:H/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 3.7 | Attack Range | Local |
Cvss Impact Score | 6.4 | Attack Complexity | High |
Cvss Expoit Score | 1.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
A potential security vulnerability has been identified with certain HP ProCurve 5400 zl switches using a compact flash card which may contain malware content that is a PC trojan executable. The ProCurve switch operating system is not infected with the malware and the content on the compact flash card has no impact on the operation of the switch. Reuse of the compact flash card in a personal computer and manual execution of the malware content could result in a compromise of that system's integrity. |
Original Source
Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03249176 |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Hardware | 1 | |
Hardware |
| 4 |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 | |
Hardware | 1 |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2012-04-19 | IAVM : 2012-B-0044 - HP ProCurve 5400 zl Switches Security Vulnerability Severity : Category II - VMSKEY : V0032006 |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-08-13 | Name : The remote host is missing a vendor-supplied software update. File : hp_procurve_HPSBPV02754.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2013-11-11 12:41:02 |
|