HP Select Identity unauthorized access

hp-selectidentity-unspecified-unauth-access (38840)

Medium Risk

Description:

An unspecified vulnerability in HP Select Identity could allow a remote attacker to gain unauthorized access to the system using unknown attack vectors.

Platforms Affected:

• HP, Select Identity 4.01
• HP, Select Identity 4.1.1
• HP, Select Identity 4.1.10
• HP, Select Identity 4.1.2
• HP, Select Identity 4.1.3
• HP, Select Identity 4.1.4
• HP, Select Identity 4.1.5
• HP, Select Identity 4.1.6
• HP, Select Identity 4.1.7
• HP, Select Identity 4.1.8
• HP, Select Identity 4.1.9

Remedy:

Refer to HPSBMA02293 SSRT071494 rev.1 for patch, upgrade, or suggested workaround information. See References.

Consequences:

Gain Access

References:

• HPSBMA02293 SSRT071494 rev.1, HP Select Identity, Remote Unauthorized Access at http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01293337&jumpid=reg_R1002_USEN.
• BID-26694: HP Select Identity Unspecified Remote Unauthorized Access Vulnerability
• CVE-2007-6194: Unspecified vulnerability in HP Select Identity 4.01 before 4.01.012 and 4.1x before 4.13.003 allows remote attackers to obtain unspecified access via unknown vectors.
• FrSIRT/ADV-2007-4093: HP Select Identity Unspecified Remote Unauthorized Access Vulnerability
• SA27924: HP Select Identity Unspecified Unauthorised Access Vulnerability
• SECTRACK ID: 1019037: HP Select Identity Bug Lets Remote Users Gain Access

Reported:

Dec 03, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page