HP-UX Support Tools Manager unspecified denial of service

hp-stm-unspecified-dos (27314) The risk level is classified as LowLow Risk

Description:

HP-UX running Support Tools Manager (xstm, cstm, stm) is vulnerable to an unspecified denial of service. A local attacker could exploit this vulnerability to cause the system to crash or stop responding.

Platforms Affected:

  • HP, HP-UX B.11.11
  • HP, HP-UX B.11.23

Remedy:

Refer to Hewlett-Packard Company Security Bulletin HPSBUX02115 SSRT061077 for patch, upgrade, or suggested workaround information. See References.

Consequences:

Denial of Service

References:

  • BugTraq Mailing List, Fri Jun 16 2006 - 06:52:38 CDT, [security bulletin] HPSBUX02115 SSRT061077 rev.1 - HP-UX running Support Tools Manager (xstm, cstm, stm) Local Denial of Service (DoS) at http://archives.neohapsis.com/archives/bugtraq/2006-06/0320.html.
  • BugTraq Mailing List, Wed Aug 16 2006 - 14:32:03 CDT, [security bulletin] HPSBUX02115 SSRT061077 rev.2 - HP-UX running Support Tools Manager (xstm, cstm, stm) Local Denial of Service (DoS) at http://archives.neohapsis.com/archives/bugtraq/2006-08/0330.html.
  • Hewlett-Packard Company Security Bulletin HPSBUX02115 SSRT061077, HP-UX running Support Tools Manager (xstm, cstm, stm) Local Denial of Service (DoS) at http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00657001.
  • ASA-2006-130: HP-UX running Support Tools Manager (xstm, cstm, stm) Local Denial of Service (DoS)
  • BID-18457: HP-UX Support Tools Manager Unspecified Local Denial of Service Vulnerability
  • CVE-2006-3097: Unspecified vulnerability in Support Tools Manager (xstm, cstm, and stm) on HP-UX B.11.11 and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.
  • OSVDB ID: 26622: HP-UX Support Tools Manager Unspecified Local DoS
  • SA20711: HP-UX Support Tools Manager Denial of Service Vulnerability
  • SA21491: HP-UX Support Tools Manager Denial of Service Vulnerability
  • SECTRACK ID: 1016307: HP Support Tools Manager Lets Local Users Deny Service
  • VUPEN/ADV-2006-2406: HP-UX Support Tools Manager Unspecified Local Denial of Service Vulnerability
  • VUPEN/ADV-2006-3292: HP-UX Support Tools Manager Unspecified Local Denial of Service Vulnerability

Reported:

Jun 16, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2009 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page