New OVAL definitions for HP-UX
|
|
Peng, Pai
|
Some javascript/style in this post has been disabled (why?)
Please find attached 5 OVAL definitions for HP-UX
vulnerabilities. They cover CVE-2007-4572, CVE-2007-5398, CVE-2007-6015, CVE-2008-1105,
and CVE-2008-0599. Thanks, Pai <?xml version="1.0" encoding="UTF-8"?> <oval_definitions xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" xmlns:hpux-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux hpux-definitions-schema.xsd"> <generator> <oval:product_name>Hewlett-Packard</oval:product_name> <oval:schema_version>5.4</oval:schema_version> <oval:timestamp>2008-06-30T13:13:25.000-04:00</oval:timestamp> </generator> <definitions> <definition id="oval:com.hp.oval:def:20080630001" version="0" class="vulnerability"> <metadata> <title>HP-UX running HP CIFS Server (Samba), Remote Execution of Arbitrary Code</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-4572" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4572"/> <description>A potential security vulnerabilities has been identified with HP-UX running HP CIFS Server (Samba). The vulnerabilities could be exploited remotely to execute arbitrary code.</description> <oval_repository> <dates> <submitted date="2008-06-30T13:13:25.000-04:00"> <contributor organization="Hewlett-Packard">Pai Peng</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02341"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080630001"/> </criteria> <criteria operator="OR" comment="filesets tests"> <criterion comment="CIFS-Server.CIFS-ADMIN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630002"/> <criterion comment="CIFS-Server.CIFS-DOC version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630003"/> <criterion comment="CIFS-Server.CIFS-LIB version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630004"/> <criterion comment="CIFS-Server.CIFS-MAN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630005"/> <criterion comment="CIFS-Server.CIFS-RUN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630006"/> <criterion comment="CIFS-Server.CIFS-UTIL version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630007"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080630002" version="0" class="vulnerability"> <metadata> <title>HP-UX running HP CIFS Server (Samba), Remote Execution of Arbitrary Code</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-5398" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5398"/> <description>A potential security vulnerabilities has been identified with HP-UX running HP CIFS Server (Samba). The vulnerabilities could be exploited remotely to execute arbitrary code.</description> <oval_repository> <dates> <submitted date="2008-06-30T13:13:25.000-04:00"> <contributor organization="Hewlett-Packard">Pai Peng</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02341"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080630001"/> </criteria> <criteria operator="OR" comment="filesets tests"> <criterion comment="CIFS-Server.CIFS-ADMIN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630002"/> <criterion comment="CIFS-Server.CIFS-DOC version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630003"/> <criterion comment="CIFS-Server.CIFS-LIB version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630004"/> <criterion comment="CIFS-Server.CIFS-MAN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630005"/> <criterion comment="CIFS-Server.CIFS-RUN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630006"/> <criterion comment="CIFS-Server.CIFS-UTIL version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630007"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080630003" version="0" class="vulnerability"> <metadata> <title>HP-UX running HP CIFS Server (Samba), Remote Execution of Arbitrary Code</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-6015" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6015"/> <description>A potential security vulnerabilities has been identified with HP-UX running HP CIFS Server (Samba). The vulnerabilities could be exploited remotely to execute arbitrary code.</description> <oval_repository> <dates> <submitted date="2008-06-30T13:13:25.000-04:00"> <contributor organization="Hewlett-Packard">Pai Peng</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02341"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080630001"/> </criteria> <criteria operator="OR" comment="filesets tests"> <criterion comment="CIFS-Server.CIFS-ADMIN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630002"/> <criterion comment="CIFS-Server.CIFS-DOC version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630003"/> <criterion comment="CIFS-Server.CIFS-LIB version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630004"/> <criterion comment="CIFS-Server.CIFS-MAN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630005"/> <criterion comment="CIFS-Server.CIFS-RUN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630006"/> <criterion comment="CIFS-Server.CIFS-UTIL version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630007"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080630004" version="0" class="vulnerability"> <metadata> <title>HP-UX running HP CIFS Server (Samba), Remote Execution of Arbitrary Code</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2008-1105" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105"/> <description>A potential security vulnerabilities has been identified with HP-UX running HP CIFS Server (Samba). The vulnerabilities could be exploited remotely to execute arbitrary code.</description> <oval_repository> <dates> <submitted date="2008-06-30T13:13:25.000-04:00"> <contributor organization="Hewlett-Packard">Pai Peng</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02341"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080630001"/> </criteria> <criteria operator="OR" comment="filesets tests"> <criterion comment="CIFS-Server.CIFS-ADMIN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630002"/> <criterion comment="CIFS-Server.CIFS-DOC version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630003"/> <criterion comment="CIFS-Server.CIFS-LIB version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630004"/> <criterion comment="CIFS-Server.CIFS-MAN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630005"/> <criterion comment="CIFS-Server.CIFS-RUN version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630006"/> <criterion comment="CIFS-Server.CIFS-UTIL version is less than A.02.03.04" test_ref="oval:com.hp.oval:tst:20080630007"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080630005" version="0" class="vulnerability"> <metadata> <title>HP-UX Running Apache with PHP, Remote Execution of Arbitrary Code</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2008-0599" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0599"/> <description>A potential security vulnerability has been identified with HP-UX running Apache with PHP. This vulnerability could be exploited remotely to execute arbitrary code.</description> <oval_repository> <dates> <submitted date="2008-06-30T13:13:25.000-04:00"> <contributor organization="Hewlett-Packard">Pai Peng</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02342"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="hpuxwsAPACHE.PHP version is less than B.2.0.59.04.2" test_ref="oval:com.hp.oval:tst:20080630008"/> <criterion comment="hpuxwsAPACHE.PHP2 version is less than B.2.0.59.04.2" test_ref="oval:com.hp.oval:tst:20080630009"/> </criteria> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02342"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080630001"/> </criteria> <criteria operator="OR" comment="filesets tests"> <criterion comment="hpuxwsAPCH32.PHP version is less than B.2.0.59.04.2" test_ref="oval:com.hp.oval:tst:20080630010"/> <criterion comment="hpuxwsAPCH32.PHP2 version is less than B.2.0.59.04.2" test_ref="oval:com.hp.oval:tst:20080630011"/> <criterion comment="hpuxwsAPACHE.PHP version is less than B.2.0.59.04.2" test_ref="oval:com.hp.oval:tst:20080630008"/> <criterion comment="hpuxwsAPACHE.PHP2 version is less than B.2.0.59.04.2" test_ref="oval:com.hp.oval:tst:20080630009"/> </criteria> </criteria> </criteria> </definition> </definitions> <tests> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" check_existence="at_least_one_exists" comment="HP-UX B.11.31" check="all" version="1" id="oval:com.hp.oval:tst:20080630001"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:com.hp.oval:ste:20080630001"/> </uname_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="CIFS-Server.CIFS-ADMIN version is less than A.02.03.04" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630002"> <object object_ref="oval:com.hp.oval:obj:20080630001"/> <state state_ref="oval:com.hp.oval:ste:20080630002"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="CIFS-Server.CIFS-DOC version is less than A.02.03.04" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630003"> <object object_ref="oval:com.hp.oval:obj:20080630002"/> <state state_ref="oval:com.hp.oval:ste:20080630002"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="CIFS-Server.CIFS-LIB version is less than A.02.03.04" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630004"> <object object_ref="oval:com.hp.oval:obj:20080630003"/> <state state_ref="oval:com.hp.oval:ste:20080630002"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="CIFS-Server.CIFS-MAN version is less than A.02.03.04" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630005"> <object object_ref="oval:com.hp.oval:obj:20080630004"/> <state state_ref="oval:com.hp.oval:ste:20080630002"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="CIFS-Server.CIFS-RUN version is less than A.02.03.04" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630006"> <object object_ref="oval:com.hp.oval:obj:20080630005"/> <state state_ref="oval:com.hp.oval:ste:20080630002"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="CIFS-Server.CIFS-UTIL version is less than A.02.03.04" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630007"> <object object_ref="oval:com.hp.oval:obj:20080630006"/> <state state_ref="oval:com.hp.oval:ste:20080630002"/> </swlist_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3704" version="1" check="all" comment="HP Release B.11.11" check_existence="at_least_one_exists"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3389"/> </uname_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3901" version="1" check="all" comment="HP Release B.11.23" check_existence="at_least_one_exists"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3324"/> </uname_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="hpuxwsAPACHE.PHP version is less than B.2.0.59.04.2" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630008"> <object object_ref="oval:com.hp.oval:obj:20080630007"/> <state state_ref="oval:com.hp.oval:ste:20080630003"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="hpuxwsAPACHE.PHP2 version is less than B.2.0.59.04.2" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630009"> <object object_ref="oval:com.hp.oval:obj:20080630008"/> <state state_ref="oval:com.hp.oval:ste:20080630003"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="hpuxwsAPCH32.PHP version is less than B.2.0.59.04.2" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630010"> <object object_ref="oval:com.hp.oval:obj:20080630009"/> <state state_ref="oval:com.hp.oval:ste:20080630003"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="hpuxwsAPCH32.PHP2 version is less than B.2.0.59.04.2" check="at least one" version="1" id="oval:com.hp.oval:tst:20080630011"> <object object_ref="oval:com.hp.oval:obj:20080630010"/> <state state_ref="oval:com.hp.oval:ste:20080630003"/> </swlist_test> </tests> <objects> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630001"> <swlist>CIFS-Server.CIFS-ADMIN</swlist> </swlist_object> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630002"> <swlist>CIFS-Server.CIFS-DOC</swlist> </swlist_object> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630003"> <swlist>CIFS-Server.CIFS-LIB</swlist> </swlist_object> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630004"> <swlist>CIFS-Server.CIFS-MAN</swlist> </swlist_object> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630005"> <swlist>CIFS-Server.CIFS-RUN</swlist> </swlist_object> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630006"> <swlist>CIFS-Server.CIFS-UTIL</swlist> </swlist_object> <uname_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:obj:2759" version="1" comment="The single uname object."/> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630007"> <swlist>hpuxwsAPACHE.PHP</swlist> </swlist_object> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630008"> <swlist>hpuxwsAPACHE.PHP2</swlist> </swlist_object> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630009"> <swlist>hpuxwsAPCH32.PHP</swlist> </swlist_object> <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080630010"> <swlist>hpuxwsAPCH32.PHP2</swlist> </swlist_object> </objects> <states> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" operator="AND" version="1" id="oval:com.hp.oval:ste:20080630001"> <os_release>B.11.31</os_release> </uname_state> <swlist_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:ste:20080630002"> <version operation="less than" datatype="fileset_revision">A.02.03.04</version> </swlist_state> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3324" version="1" operator="AND"> <os_release>B.11.23</os_release> </uname_state> <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3389" version="1" operator="AND"> <os_release>B.11.11</os_release> </uname_state> <swlist_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:ste:20080630003"> <version operation="less than" datatype="fileset_revision">B.2.0.59.04.2</version> </swlist_state> </states> </oval_definitions> |
|||||||||||||||
Worrell, Bryan A.
|
Pai,
Thank you for your submission to the OVAL Repository. Your submission has been processed and is available for further community review via the OVAL Repository website. Thanks, Bryan Worrell __ Bryan Worrell The MITRE Corporation bworrell@... >-----Original Message----- >From: Peng, Pai [mailto:pai.peng@...] >Sent: Monday, June 30, 2008 1:31 PM >To: oval-discussion-list OVAL Discussion List/Closed Public Discussi >Subject: [OVAL-DISCUSSION-LIST] New OVAL definitions for HP-UX > >Please find attached 5 OVAL definitions for HP-UX vulnerabilities. They >cover CVE-2007-4572, CVE-2007-5398, CVE-2007-6015, CVE-2008-1105, and >CVE-2008-0599. > > > >Thanks, > >Pai > >To unsubscribe, send an email message to LISTSERV@... with >SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have >difficulties, write to OVAL-DISCUSSION-LIST-request@.... To unsubscribe, send an email message to LISTSERV@... with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to OVAL-DISCUSSION-LIST-request@.... |
|||||||||||||||
| Free Forum Powered by Nabble | Forum Help |