OVAL Reference oval:org.mitre.oval:def:7131

Oval Definition:

oval:org.mitre.oval:def:7131

Revision Date:	2015-04-20	Version:	28
Title:	HP-UX Running Kerberos, Remote Denial of Service (DoS), Execution of Arbitrary Code
Description:	Integer signedness error in the gssrpc__svcauth_unix function in svc_auth_unix.c in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a negative length value.
Family:	unix	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2007-2443
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis
Criteria meets HP Security Bulletin HPSBUX02544 HP-UX B.11.31 AND filesets tests KRB5-Client.KRB5-PRG is installed OR KRB5-Client.KRB5-64SLIB is installed OR KRB5-Client.KRB5-IA32SLIB is installed OR KRB5-Client.KRB5-IA64SLIB is installed OR KRB5-Client.KRB5-RUN is installed OR KRB5-Client.KRB5-SHLIB is installed AND NOT Patch PHSS_41168 is installed OR Criteria meets HP Security Bulletin HPSBUX02544 HP-UX B.11.23 AND filesets tests KRB5-Client.KRB5-PRG is installed OR KRB5-Client.KRB5-64SLIB is installed OR KRB5-Client.KRB5-IA32SLIB is installed OR KRB5-Client.KRB5-IA64SLIB is installed OR KRB5-Client.KRB5-RUN is installed OR KRB5-Client.KRB5-SHLIB is installed AND NOT Patch PHSS_41167 is installed OR Criteria meets HP Security Bulletin HPSBUX02544 HP-UX B.11.11 AND filesets tests KRB5-Client.KRB5-SHLIB is installed OR KRB5-Client.KRB5-PRG is installed OR KRB5-Client.KRB5-RUN is installed OR KRB5-Client.KRB5-64SLIB is installed AND NOT Patch PHSS_41166 is installed OR Criteria meets HP Security Bulletin HPSBUX02544 HP-UX B.11.23 AND filesets tests krb5client.KRB5-64SLIB-A version is less than D.1.6.2.08 OR krb5client.KRB5-PRG-A version is less than D.1.6.2.08 OR krb5client.KRB5-RUN-A version is less than D.1.6.2.08 OR krb5client.KRB5-SHLIB-A version is less than D.1.6.2.08 OR krb5client.KRB5IA32SLIB-A version is less than D.1.6.2.08 OR krb5client.KRB5IA64SLIB-A version is less than D.1.6.2.08 OR Criteria meets HP Security Bulletin HPSBUX02544 HP-UX B.11.11 AND filesets tests krb5client.KRB5-64SLIB-A version is less than C.1.3.5.10 OR krb5client.KRB5-PRG-A version is less than C.1.3.5.10 OR krb5client.KRB5-RUN-A version is less than C.1.3.5.10 OR krb5client.KRB5-SHLIB-A version is less than C.1.3.5.10 OR Criteria meets HP Security Bulletin HPSBUX02544 HP-UX B.11.31 AND filesets tests krb5client.KRB5-64SLIB-A version is less than E.1.6.2.08 OR krb5client.KRB5-PRG-A version is less than E.1.6.2.08 OR krb5client.KRB5-RUN-A version is less than E.1.6.2.08 OR krb5client.KRB5-SHLIB-A version is less than E.1.6.2.08 OR krb5client.KRB5IA32SLIB-A version is less than E.1.6.2.08 OR krb5client.KRB5IA64SLIB-A version is less than E.1.6.2.08

BACK