(HP Issues Fix for WBEM Services) OpenPegasus Stack Overflow in PAM Authentication Lets Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1019947 |
|
SecurityTracker URL: http://securitytracker.com/id/1019947
|
|
CVE Reference:
CVE-2008-0003
(Links to External Site)
|
Updated: Feb 11 2009
|
Original Entry Date: Apr 30 2008
|
Impact:
Execution of arbitrary code via network, Root access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 02.07 and prior versions
|
Description:
A vulnerability was reported in OpenPegasus. A remote user can execute arbitrary code on the target system. HP WBEM Services is affected.
A remote user can send specially crafted data to trigger a stack overflow in the PAM authentication code and execute arbitrary code on the target system. The code will run with root privileges.
The vulnerability resides in PAMBasicAuthenticator::PAMCallback().
|
Impact:
A remote user can execute arbitrary code on the target system with root privileges.
|
Solution:
HP has issued a fix for WBEM Services, which is affected by this vulnerability.
The patches are available at:
http://itrc.hp.com
OS Release, Affected WBEM Services Revision, Patch ID:
B.11.11 A.02.07.01 PHSS_37700
B.11.23 A.02.07 PHSS_37701
B.11.31 A.02.07 PHSS_37891
B.11.11 A.02.05.08 PHSS_37702
B.11.23 A.02.05.08 PHSS_37703
B.11.31 A.02.05.08 PHSS_37704
B.11.11 A.02.00.11 PHSS_38747
B.11.23 A.02.00.11 PHSS_38748
The HP advisory is available at:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01438409
|
Cause:
Boundary error
|
Underlying OS:
UNIX (HP/UX)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Tue, 29 Apr 2008 22:18:12 -0400
Subject: HPSBMA02331 SSRT080000 rev.1 - HP-UX running WBEM Services, Remote Execution of Arbitrary Code, Gain Extended Privileges
|
https://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01438409
CVE-2007-5360, CVE-2008-0003
|
|
