Oval Definition:oval:org.mitre.oval:def:19559
Revision Date:2015-04-20Version:30
Title:HP-UX Running Xserver, Remote Execution of Arbitrary Code
Description:X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-5958
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02381
  • HP-UX B.11.31
  • AND Xserver.X11-SERV is installed
  • AND NOT Patch PHSS_38840 is installed
  • OR Criteria meets HP Security Bulletin HPSBUX02381
  • HP-UX B.11.23
  • AND filesets tests
  • URL: is installed
  • OR Xserver.X11-SERV is installed
  • AND NOT Patch PHSS_37972 is installed
  • OR Criteria meets HP Security Bulletin HPSBUX02381
  • HP-UX B.11.11
  • AND filesets tests
  • URL: is installed
  • OR Xserver.X11-SERV is installed
  • AND NOT Patch PHSS_34392 is installed
    • BACK