Oval Definition:oval:org.mitre.oval:def:5773
Revision Date:2014-03-24Version:21
Title:HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS)
Description:Multiple cross-site scripting (XSS) vulnerabilities in HP System Management Homepage (SMH) in HP-UX B.11.11, B.11.23, and B.11.31, and SMH before 2.1.10 for Linux and Windows, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-5302
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBMA02274
  • platforms
  • HP-UX B.11.11
  • OR HP-UX B.11.23
  • OR HP-UX B.11.31
  • AND SysMgmtHomepage.SMH-RUN version is less than A.2.2.6.2
  • OR Criteria meets HP Security Bulletin HPSBMA02274
  • HP-UX B.11.31
  • AND SysMgmtHomepage.SMH-RUN is installed
  • AND NOT Patch PHSS_36871 is installed
  • OR Criteria meets HP Security Bulletin HPSBMA02274
  • HP-UX B.11.11
  • AND SysMgmtHomepage.SMH-RUN is installed
  • AND NOT Patch PHSS_36869 is installed
  • OR Criteria meets HP Security Bulletin HPSBMA02274
  • HP-UX B.11.23
  • AND SysMgmtHomepage.SMH-RUN is installed
  • AND NOT Patch PHSS_36870 is installed
    • BACK