Wednesday, March 19, 2008 9:04 AM
cmosby
HP StorageWorks Library and Tape Tools (LTT) on HP-UX Security Bypass - Advisories - Secunia
HP StorageWorks Library and Tape Tools (LTT) on HP-UX Security Bypass
Secunia Advisory:
SA29442
Release Date:
2008-03-19
Critical:
Less critical
Impact:
Security Bypass
Where:
Local system
Solution Status:
Vendor Patch
Software:
HP StorageWorks Library and Tape Tools 4.x
CVE reference:
CVE-2008-0707 (Secunia mirror)
Description:
HP has acknowledged a vulnerability in HP StorageWorks Library and Tape Tools (LTT), which can be exploited by malicious, local users to bypass certain security restrictions.
The vulnerability is caused due to an unspecified error. No more information is currently available.
Solution:
Update to HP StorageWorks Library and Tape Tools v4.5 SR1 (7 Mar 2008) or subsequent.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
http://www12.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01399648
Source: HP StorageWorks Library and Tape Tools (LTT) on HP-UX Security Bypass - Advisories - Secunia
Filed under: Patch Management, Security, Enterprise Applications, Software Vulnerabilites