oval:org.mitre.oval:def:12794

Definition Id: oval:org.mitre.oval:def:12794

Oval ID:	oval:org.mitre.oval:def:12794
Title:	HP-UX Running CDE Calendar Manager, Remote Execution of Arbitrary Code
Description:	Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote attackers to affect confidentiality, integrity, and availability, related to CDE Calendar Manager Service Daemon and RPC. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from other software vendors that this affects other operating systems, such as HP-UX, or claims from a reliable third party that this is a buffer overflow in rpc.cmsd via long XDR-encoded ASCII strings in RPC call 10.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4435	Version:	11
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02628 HP-UX B.11.31 AND CDE.CDE-RUN is installed AND NOT Patch PHSS_41788 is installed OR Criteria meets HP Security Bulletin HPSBUX02628 HP Release B.11.23 AND CDE.CDE-RUN is installed AND NOT Patch PHSS_41174 is installed