OVAL
 › 
OVAL Repository Forum

New OVAL for HP-UX 11

2 Messages Forum Options Options
Permalink
Wood, Michael
New OVAL for HP-UX 11
Reply Threaded More
Print post
Permalink
This file contains

oval:com.hp.oval:def:20080717001        CVE-2008-1447

Thanks,

Michael Wood
Hewlett-Packard

To unsubscribe, send an email message to LISTSERV@... with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to OVAL-DISCUSSION-LIST-request@....

<?xml version="1.0" encoding="UTF-8"?>
<oval_definitions xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" xmlns:hpux-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux hpux-definitions-schema.xsd">
  <generator>
    <oval:product_name>Hewlett-Packard</oval:product_name>
    <oval:schema_version>5.4</oval:schema_version>
    <oval:timestamp>2008-07-17T12:00:40.000-04:00</oval:timestamp>
  </generator>
  <definitions>
    <definition id="oval:com.hp.oval:def:20080717001" version="0" class="vulnerability">
      <metadata>
        <title>HP-UX Running BIND, Remote DNS Cache Poisoning</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2008-1447" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447"/>
        <description>The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via certain cache poisoning techniques against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability."</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-17T12:00:40.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="OR">
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02351">
          <criterion comment="HP-UX B.11.31" test_ref="oval:org.mitre.oval:tst:8260"/>
          <criteria operator="OR" comment="filesets tests">
            <criterion comment="NameService.BIND-AUX version is less than C.9.3.2.3.0" test_ref="oval:com.hp.oval:tst:20080717001"/>
            <criterion comment="NameService.BIND-RUN version is less than C.9.3.2.3.0" test_ref="oval:com.hp.oval:tst:20080717002"/>
          </criteria>
        </criteria>
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02351">
          <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/>
          <criterion comment="BindUpgrade.BIND-UPGRADE version is less than C.9.3.2.3.0" test_ref="oval:com.hp.oval:tst:20080717003"/>
        </criteria>
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02351">
          <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/>
          <criteria operator="OR" comment="filesets tests">
            <criterion comment="BindUpgrade.BIND-UPGRADE version is less than C.9.3.2.3.0" test_ref="oval:com.hp.oval:tst:20080717003"/>
            <criterion comment="BindUpgrade.BIND2-UPGRADE version is less than C.9.3.2.3.0" test_ref="oval:com.hp.oval:tst:20080717004"/>
          </criteria>
        </criteria>
      </criteria>
    </definition>
  </definitions>
  <tests>
    <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NameService.BIND-AUX version is less than C.9.3.2.3.0" check="at least one" version="1" id="oval:com.hp.oval:tst:20080717001">
      <object object_ref="oval:com.hp.oval:obj:20080717001"/>
      <state state_ref="oval:com.hp.oval:ste:20080717001"/>
    </swlist_test>
    <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NameService.BIND-RUN version is less than C.9.3.2.3.0" check="at least one" version="1" id="oval:com.hp.oval:tst:20080717002">
      <object object_ref="oval:com.hp.oval:obj:20080717002"/>
      <state state_ref="oval:com.hp.oval:ste:20080717001"/>
    </swlist_test>
    <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="BindUpgrade.BIND-UPGRADE version is less than C.9.3.2.3.0" check="at least one" version="1" id="oval:com.hp.oval:tst:20080717003">
      <object object_ref="oval:com.hp.oval:obj:20080717003"/>
      <state state_ref="oval:com.hp.oval:ste:20080717001"/>
    </swlist_test>
    <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="BindUpgrade.BIND2-UPGRADE version is less than C.9.3.2.3.0" check="at least one" version="1" id="oval:com.hp.oval:tst:20080717004">
      <object object_ref="oval:com.hp.oval:obj:20080717004"/>
      <state state_ref="oval:com.hp.oval:ste:20080717001"/>
    </swlist_test>
    <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3704" version="1" comment="HP Release B.11.11" check_existence="at_least_one_exists" check="all">
      <object object_ref="oval:org.mitre.oval:obj:2759"/>
      <state state_ref="oval:org.mitre.oval:ste:3389"/>
    </uname_test>
    <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3901" version="1" comment="HP Release B.11.23" check_existence="at_least_one_exists" check="all">
      <object object_ref="oval:org.mitre.oval:obj:2759"/>
      <state state_ref="oval:org.mitre.oval:ste:3324"/>
    </uname_test>
    <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:8260" version="1" comment="HP-UX B.11.31" check_existence="at_least_one_exists" check="all">
      <object object_ref="oval:org.mitre.oval:obj:2759"/>
      <state state_ref="oval:org.mitre.oval:ste:3363"/>
    </uname_test>
  </tests>
  <objects>
    <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080717001">
      <swlist>NameService.BIND-AUX</swlist>
    </swlist_object>
    <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080717002">
      <swlist>NameService.BIND-RUN</swlist>
    </swlist_object>
    <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080717003">
      <swlist>BindUpgrade.BIND-UPGRADE</swlist>
    </swlist_object>
    <swlist_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080717004">
      <swlist>BindUpgrade.BIND2-UPGRADE</swlist>
    </swlist_object>
    <uname_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:obj:2759" version="1" comment="The single uname object."/>
  </objects>
  <states>
    <swlist_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:ste:20080717001">
      <version operation="less than" datatype="fileset_revision">C.9.3.2.3.0</version>
    </swlist_state>
    <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3324" version="1">
      <os_release>B.11.23</os_release>
    </uname_state>
    <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3363" version="1">
      <os_release>B.11.31</os_release>
    </uname_state>
    <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3389" version="1">
      <os_release>B.11.11</os_release>
    </uname_state>
  </states>
</oval_definitions>
Worrell, Bryan A.
Re: New OVAL for HP-UX 11
Reply Threaded More
Print post
Permalink
Michael,

Thank you for your submission to the OVAL Repository.  Your submission
has been processed and is available for further community review.

Thanks,
Bryan Worrell



__
Bryan Worrell    
The MITRE Corporation
bworrell@...




>-----Original Message-----
>From: Wood, Michael [mailto:michael.wood@...]
>Sent: Thursday, July 17, 2008 12:06 PM
>To: oval-discussion-list OVAL Discussion List/Closed Public Discussi
>Subject: [OVAL-DISCUSSION-LIST] New OVAL for HP-UX 11
>
>This file contains
>
>oval:com.hp.oval:def:20080717001        CVE-2008-1447
>
>Thanks,
>
>Michael Wood
>Hewlett-Packard
>
>To unsubscribe, send an email message to LISTSERV@... with
>SIGNOFF OVAL-DISCUSSION-LIST
>in the BODY of the message.  If you have difficulties, write to OVAL-
>DISCUSSION-LIST-request@....

To unsubscribe, send an email message to LISTSERV@... with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to OVAL-DISCUSSION-LIST-request@....
Free Forum Powered by Nabble Forum Help