New OVALs for HP-UX 11

Here are some new OVALs for HP-UX 11

oval:com.hp.oval:def:20080711001        CVE-2001-0105
oval:com.hp.oval:def:20080711002        CVE-2001-0085
oval:com.hp.oval:def:20080711003        CVE-2000-1126
oval:com.hp.oval:def:20080711004        CVE-2000-0966
oval:com.hp.oval:def:20080711005        CVE-2000-0965
oval:com.hp.oval:def:20080711006        CVE-2000-0730
oval:com.hp.oval:def:20080711007        CVE-2000-0414
oval:com.hp.oval:def:20080711008        CVE-2000-0083
oval:com.hp.oval:def:20080711009        CVE-2000-0078
oval:com.hp.oval:def:20080711010        CVE-2000-0077
oval:com.hp.oval:def:20080711011        CVE-1999-1573
oval:com.hp.oval:def:20080711012        CVE-1999-0696
oval:com.hp.oval:def:20080711013        CVE-1999-0688
oval:com.hp.oval:def:20080711014        CVE-1999-0432
oval:com.hp.oval:def:20080711015        CVE-1999-0353
oval:com.hp.oval:def:20080711016        CVE-2000-0005
oval:com.hp.oval:def:20080711017        CVE-1999-0779
oval:com.hp.oval:def:20080711018        CVE-1999-1136
oval:com.hp.oval:def:20080711019        CVE-1999-0104
oval:com.hp.oval:def:20080711020        CVE-1999-0015
oval:com.hp.oval:def:20080711021        CVE-1999-0016

Thanks,

Michael Wood
Hewlett-Packard

To unsubscribe, send an email message to LISTSERV@... with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to OVAL-DISCUSSION-LIST-request@....

<?xml version="1.0" encoding="UTF-8"?>
<oval_definitions xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" xmlns:hpux-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux hpux-definitions-schema.xsd">
  <generator>
    <oval:product_name>Hewlett-Packard</oval:product_name>
    <oval:schema_version>5.4</oval:schema_version>
    <oval:timestamp>2008-07-11T14:41:52.000-04:00</oval:timestamp>
  </generator>
  <definitions>
    <definition id="oval:com.hp.oval:def:20080711001" version="0" class="vulnerability">
      <metadata>
        <title>the top(1) command has a security defect.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2001-0105" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0105"/>
        <description>Vulnerability in top in HP-UX 11.04 and earlier allows local users to overwrite files owned by the "sys" group.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="OR">
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin  HPSBUX0012-134 ">
          <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/>
          <criterion comment="Patch PHCO_22921 is installed" test_ref="oval:com.hp.oval:tst:20080711001" negate="true"/>
        </criteria>
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin  HPSBUX0012-134 ">
          <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
          <criterion comment="Patch PHCO_22686 is installed" test_ref="oval:com.hp.oval:tst:20080711002" negate="true"/>
        </criteria>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711002" version="0" class="vulnerability">
      <metadata>
        <title>Kermit communications software contains a buffer overflow.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2001-0085" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0085"/>
        <description>Buffer overflow in Kermit communications software in HP-UX 11.0 and earlier allows local users to cause a denial of service and possibly execute arbitrary commands.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX0012-135 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHCO_22665 is installed" test_ref="oval:com.hp.oval:tst:20080711003" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711003" version="0" class="vulnerability">
      <metadata>
        <title>Security vulnerability in auto_parms and set_parms</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-1126" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1126"/>
        <description>Vulnerability in auto_parms and set_parms in HP-UX 11.00 and earlier allows remote attackers to execute arbitrary commands or cause a denial of service.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="OR">
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX0011-130 ">
          <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/>
          <criterion comment="Patch PHCO_22186 is installed" test_ref="oval:com.hp.oval:tst:20080711004" negate="true"/>
        </criteria>
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX0011-130 ">
          <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
          <criterion comment="Patch PHCO_21993 is installed" test_ref="oval:com.hp.oval:tst:20080711005" negate="true"/>
        </criteria>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711004" version="0" class="vulnerability">
      <metadata>
        <title>The lpspool subsystem has various security oriented defects.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-0966" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0966"/>
        <description>Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX0010-125 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHCO_22365 is installed" test_ref="oval:com.hp.oval:tst:20080711006" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711005" version="0" class="vulnerability">
      <metadata>
        <title>The NSAPI plugin versions of the TGA and the Java Servlet proxy demonstrate high CPU utilization under certain conditions.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-0965" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0965"/>
        <description>The NSAPI plugins for TGA and the Java Servlet proxy in HP-UX VVOS 10.24 and 11.04 allows an attacker to cause a denial of service (high CPU utilization).</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX0010-124">
        <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/>
        <criterion comment="Patch PHSS_22296 is installed" test_ref="oval:com.hp.oval:tst:20080711007" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711006" version="0" class="vulnerability">
      <metadata>
        <title>dtterm has misuse potential.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-0730" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0730"/>
        <description>Vulnerability in newgrp command in HP-UX 11.0 allows local users to gain privileges.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="OR">
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin  HPSBUX0011-128 ">
          <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/>
          <criterion comment="Patch PHSS_22548 is installed" test_ref="oval:com.hp.oval:tst:20080711008" negate="true"/>
        </criteria>
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin  HPSBUX0011-128 ">
          <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
          <criterion comment="Patch PHSS_22320 is installed" test_ref="oval:com.hp.oval:tst:20080711009" negate="true"/>
        </criteria>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711007" version="0" class="vulnerability">
      <metadata>
        <title>shutdown(1M) improperly handles input variables.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-0414" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0414"/>
        <description>Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="OR">
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin  HPSBUX0005-113 ">
          <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/>
          <criterion comment="Patch PHCO_21567 is installed" test_ref="oval:com.hp.oval:tst:20080711010" negate="true"/>
        </criteria>
        <criteria operator="AND" comment="Criteria meets HP Security Bulletin  HPSBUX0005-113 ">
          <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
          <criterion comment="Patch PHCO_21534 is installed" test_ref="oval:com.hp.oval:tst:20080711011" negate="true"/>
        </criteria>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711008" version="0" class="vulnerability">
      <metadata>
        <title>The Audio Security File is world writable.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-0083" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0083"/>
        <description>HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX0001-109 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHSS_24608 is installed" test_ref="oval:com.hp.oval:tst:20080711012" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711009" version="0" class="vulnerability">
      <metadata>
        <title>/opt/audio/bin/Aserver can be used to gain root access.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-0078" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0078"/>
        <description>The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX0001-108 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHSS_21663 is installed" test_ref="oval:com.hp.oval:tst:20080711013" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711010" version="0" class="vulnerability">
      <metadata>
        <title>/opt/audio/bin/Aserver can be used to gain root access.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-0077" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0077"/>
        <description>The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX0001-108 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHSS_21663 is installed" test_ref="oval:com.hp.oval:tst:20080711013" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711011" version="0" class="vulnerability">
      <metadata>
        <title>Various remote network commands have security defects.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-1573" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-1573"/>
        <description>Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9812-090 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHNE_16091 is installed" test_ref="oval:com.hp.oval:tst:20080711014" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711012" version="0" class="vulnerability">
      <metadata>
        <title>Buffer overflow vulnerability in the CDE Calendar Manager Service Daemon, rpc.cmsd.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-0696" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0696"/>
        <description>Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9908-102 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHSS_19483 is installed" test_ref="oval:com.hp.oval:tst:20080711015" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711013" version="0" class="vulnerability">
      <metadata>
        <title>Buffer overflows in Software Distributor (SD) commands.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-0688" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0688"/>
        <description>Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9907-101 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHCO_18183 is installed" test_ref="oval:com.hp.oval:tst:20080711016" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711014" version="0" class="vulnerability">
      <metadata>
        <title>Security Vulnerability during ftp operations.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-0432" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0432"/>
        <description>ftp on HP-UX 11.00 allows local users to gain privileges.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9903-094 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHCO_17601 is installed" test_ref="oval:com.hp.oval:tst:20080711017" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711015" version="0" class="vulnerability">
      <metadata>
        <title>rpc.pcnfsd has an error in its use of the spool directory</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-0353" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0353"/>
        <description>rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9902-091 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHNE_16470 is installed" test_ref="oval:com.hp.oval:tst:20080711018" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711016" version="0" class="vulnerability">
      <metadata>
        <title>/opt/audio/bin/Aserver can be used to gain root access.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-2000-0005" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0005"/>
        <description>HP-UX aserver program allows local users to gain privileges via a symlink attack.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX0001-108 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHSS_21663 is installed" test_ref="oval:com.hp.oval:tst:20080711013" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711017" version="0" class="vulnerability">
      <metadata>
        <title>The SharedX program recserv is vulnerable to a denial of service attack.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-0779" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0779"/>
        <description>Denial of service in HP-UX SharedX recserv program.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9810-086 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHSS_16649 is installed" test_ref="oval:com.hp.oval:tst:20080711019" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711018" version="0" class="vulnerability">
      <metadata>
        <title>Fixes a problem with the e-mail or modem traffic to and from on-site customer machines and Response Center Predictive machines.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-1136" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-1136"/>
        <description>Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive systems.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9807-081 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHSS_14592 is installed" test_ref="oval:com.hp.oval:tst:20080711020" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711019" version="0" class="vulnerability">
      <metadata>
        <title>A TCP SYN packet with target host's address as both source and destination can cause system hangs.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-0104" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0104"/>
        <description>A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9801-076 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHNE_14017 is installed" test_ref="oval:com.hp.oval:tst:20080711021" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711020" version="0" class="vulnerability">
      <metadata>
        <title>A TCP SYN packet with target host's address as both source and destination can cause system hangs.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-0015" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0015"/>
        <description>Teardrop IP denial of service.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9801-076 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHNE_14017 is installed" test_ref="oval:com.hp.oval:tst:20080711021" negate="true"/>
      </criteria>
    </definition>
    <definition id="oval:com.hp.oval:def:20080711021" version="0" class="vulnerability">
      <metadata>
        <title>A TCP SYN packet with target host's address as both source and destination can cause system hangs.</title>
        <affected family="unix">
          <platform>HP-UX 11</platform>
        </affected>
        <reference source="CVE" ref_id="CVE-1999-0016" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0016"/>
        <description>Land IP denial of service.</description>
        <oval_repository>
          <dates>
            <submitted date="2008-07-11T14:41:52.000-04:00">
              <contributor organization="Hewlett-Packard">Michael Wood</contributor>
            </submitted>
          </dates>
          <status>DRAFT</status>
        </oval_repository>
      </metadata>
      <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX9801-076 ">
        <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/>
        <criterion comment="Patch PHNE_14017 is installed" test_ref="oval:com.hp.oval:tst:20080711021" negate="true"/>
      </criteria>
    </definition>
  </definitions>
  <tests>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_22921 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711001">
      <object object_ref="oval:com.hp.oval:obj:20080711001"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_22686 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711002">
      <object object_ref="oval:com.hp.oval:obj:20080711002"/>
    </patch53_test>
    <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3294" version="1" comment="HP Release B.11.04" check_existence="at_least_one_exists" check="all">
      <object object_ref="oval:org.mitre.oval:obj:2759"/>
      <state state_ref="oval:org.mitre.oval:ste:3271"/>
    </uname_test>
    <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3571" version="1" comment="HP Release B.11.00" check_existence="at_least_one_exists" check="all">
      <object object_ref="oval:org.mitre.oval:obj:2759"/>
      <state state_ref="oval:org.mitre.oval:ste:3813"/>
    </uname_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_22665 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711003">
      <object object_ref="oval:com.hp.oval:obj:20080711003"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_22186 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711004">
      <object object_ref="oval:com.hp.oval:obj:20080711004"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_21993 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711005">
      <object object_ref="oval:com.hp.oval:obj:20080711005"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_22365 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711006">
      <object object_ref="oval:com.hp.oval:obj:20080711006"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_22296 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711007">
      <object object_ref="oval:com.hp.oval:obj:20080711007"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_22548 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711008">
      <object object_ref="oval:com.hp.oval:obj:20080711008"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_22320 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711009">
      <object object_ref="oval:com.hp.oval:obj:20080711009"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_21567 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711010">
      <object object_ref="oval:com.hp.oval:obj:20080711010"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_21534 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711011">
      <object object_ref="oval:com.hp.oval:obj:20080711011"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_24608 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711012">
      <object object_ref="oval:com.hp.oval:obj:20080711012"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_21663 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711013">
      <object object_ref="oval:com.hp.oval:obj:20080711013"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_16091 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711014">
      <object object_ref="oval:com.hp.oval:obj:20080711014"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_19483 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711015">
      <object object_ref="oval:com.hp.oval:obj:20080711015"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_18183 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711016">
      <object object_ref="oval:com.hp.oval:obj:20080711016"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_17601 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711017">
      <object object_ref="oval:com.hp.oval:obj:20080711017"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_16470 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711018">
      <object object_ref="oval:com.hp.oval:obj:20080711018"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_16649 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711019">
      <object object_ref="oval:com.hp.oval:obj:20080711019"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_14592 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711020">
      <object object_ref="oval:com.hp.oval:obj:20080711020"/>
    </patch53_test>
    <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_14017 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080711021">
      <object object_ref="oval:com.hp.oval:obj:20080711021"/>
    </patch53_test>
  </tests>
  <objects>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711001">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>22921</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711002">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>22686</patch_base>
    </patch53_object>
    <uname_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:obj:2759" version="1" comment="The single uname object."/>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711003">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>22665</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711004">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>22186</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711005">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>21993</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711006">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>22365</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711007">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>SS</area_patched>
      <patch_base>22296</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711008">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>SS</area_patched>
      <patch_base>22548</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711009">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>SS</area_patched>
      <patch_base>22320</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711010">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>21567</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711011">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>21534</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711012">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>SS</area_patched>
      <patch_base>24608</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711013">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>SS</area_patched>
      <patch_base>21663</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711014">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>NE</area_patched>
      <patch_base>16091</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711015">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>SS</area_patched>
      <patch_base>19483</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711016">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>18183</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711017">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>CO</area_patched>
      <patch_base>17601</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711018">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>NE</area_patched>
      <patch_base>16470</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711019">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>SS</area_patched>
      <patch_base>16649</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711020">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>SS</area_patched>
      <patch_base>14592</patch_base>
    </patch53_object>
    <patch53_object xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" version="1" id="oval:com.hp.oval:obj:20080711021">
      <behaviors supersedence="true"/>
      <swtype>PH</swtype>
      <area_patched>NE</area_patched>
      <patch_base>14017</patch_base>
    </patch53_object>
  </objects>
  <states>
    <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3271" version="1">
      <os_release>B.11.04</os_release>
    </uname_state>
    <uname_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:ste:3813" version="1">
      <os_release>B.11.00</os_release>
    </uname_state>
  </states>
</oval_definitions>

Michael,

With this submission is the OVAL Repository now complete for all CVE's
issued for HP-UX 11?

Thanks,

Jon

============================================
Jonathan O. Baker
The MITRE Corporation
Email: bakerj@...



To unsubscribe, send an email message to LISTSERV@... with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to OVAL-DISCUSSION-LIST-request@....

Jon,

There are quite a few CVE's that I could not write for HP-UX 11 because they did not have an HP security bulletin.  There are a few more CVE's that I know of that I'm going to need to go back and possibly write by hand (I was using a form to generate OVALs before) but I don't know when I'll get around to it.  This will not be the last submission.

Thanks,

--Michael Wood

-----Original Message-----
From: Baker, Jon [mailto:bakerj@...]
Sent: Tuesday, July 15, 2008 7:27 AM
To: OVAL-DISCUSSION-LIST@...
Subject: Re: [OVAL-DISCUSSION-LIST] New OVALs for HP-UX 11

Michael,

With this submission is the OVAL Repository now complete for all CVE's issued for HP-UX 11?

Thanks,

Jon

============================================
Jonathan O. Baker
The MITRE Corporation
Email: bakerj@...



To unsubscribe, send an email message to LISTSERV@... with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message.  If you have difficulties, write to OVAL-DISCUSSION-LIST-request@....

To unsubscribe, send an email message to LISTSERV@... with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to OVAL-DISCUSSION-LIST-request@....

Michael,

Thank you for your submission to the OVAL Repository.  Your submission
has been processed and is available for further community review via
the OVAL Repository website.

Thanks,
Bryan Worrell



__
Bryan Worrell    
The MITRE Corporation
bworrell@...



To unsubscribe, send an email message to LISTSERV@... with
SIGNOFF OVAL-DISCUSSION-LIST
in the BODY of the message.  If you have difficulties, write to OVAL-DISCUSSION-LIST-request@....