New hp-ux ovals
|
|
Wood, Michael
|
Disregard the last email. Here are some new OVALs I have written for HP-UX 11. They cover
oval:com.hp.oval:def:20080703001 - CVE-2008-1660 oval:com.hp.oval:def:20080703002 - CVE-2008-0713 oval:com.hp.oval:def:20080703003 - CVE-2007-6419 oval:com.hp.oval:def:20080703004 - CVE-2007-6195 oval:com.hp.oval:def:20080703005 - CVE-2007-5946 oval:com.hp.oval:def:20080703006 - CVE-2007-5302 oval:com.hp.oval:def:20080703007 - CVE-2007-5008 oval:com.hp.oval:def:20080703008 - CVE-2007-4590 oval:com.hp.oval:def:20080703009 - CVE-2007-1994 oval:com.hp.oval:def:20080703010 - CVE-2007-0916 oval:com.hp.oval:def:20080703011 - CVE-2006-5452 oval:com.hp.oval:def:20080703012 - CVE-2006-5151 oval:com.hp.oval:def:20080703014 - CVE-2006-5091 oval:com.hp.oval:def:20080703015 - CVE-2006-4820 oval:com.hp.oval:def:20080703017 - CVE-2006-4795 oval:com.hp.oval:def:20080703018 - CVE-2006-4188 oval:com.hp.oval:def:20080703019 - CVE-2006-4187 oval:com.hp.oval:def:20080703020 - CVE-2006-3335 Thanks, --Michael Wood To unsubscribe, send an email message to LISTSERV@... with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to OVAL-DISCUSSION-LIST-request@.... <?xml version="1.0" encoding="UTF-8"?> <oval_definitions xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" xmlns:hpux-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux hpux-definitions-schema.xsd"> <generator> <oval:product_name>Hewlett-Packard</oval:product_name> <oval:schema_version>5.4</oval:schema_version> <oval:timestamp>2008-07-03T16:09:03.000-04:00</oval:timestamp> </generator> <definitions> <definition id="oval:com.hp.oval:def:20080703001" version="0" class="vulnerability"> <metadata> <title>HP-UX Running useradd(1M), Local Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2008-1660" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1660"/> <description>Unspecified vulnerability in useradd on HP-UX B.11.11, B.11.23, and B.11.31 allows local users to access arbitrary files and directories via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:03.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02335"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="OS-Core.ADMN-ENG-A-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703001"/> <criterion comment="OS-Core.SYS-ADMIN is installed" test_ref="oval:com.hp.oval:tst:20080703002"/> </criteria> <criterion comment="Patch PHCO_37290 is installed" test_ref="oval:com.hp.oval:tst:20080703003" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02335"> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080703004"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="OS-Core.ADMN-ENG-A-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703001"/> <criterion comment="OS-Core.SYS2-ADMIN is installed" test_ref="oval:com.hp.oval:tst:20080703005"/> </criteria> <criterion comment="Patch PHCO_36953 is installed" test_ref="oval:com.hp.oval:tst:20080703006" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02335"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="OS-Core.ADMN-ENG-A-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703001"/> <criterion comment="OS-Core.SYS-ADMIN is installed" test_ref="oval:com.hp.oval:tst:20080703002"/> <criterion comment="OS-Core.SYS2-ADMIN is installed" test_ref="oval:com.hp.oval:tst:20080703005"/> </criteria> <criterion comment="Patch PHCO_37291 is installed" test_ref="oval:com.hp.oval:tst:20080703007" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703002" version="0" class="vulnerability"> <metadata> <title>HP-UX Running ftp, Remote Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2008-0713" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0713"/> <description>Unspecified vulnerability in the FTP server for HP-UX B.11.11, B.11.23, and B.11.31 allows remote authenticated users to cause a denial of service (FTP server outage) via unknown attack vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:03.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02334"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="InternetSrvcs.INETSVCS-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703008"/> <criterion comment="Patch PHNE_36192 is installed" test_ref="oval:com.hp.oval:tst:20080703009" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02334"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="WUFTP-26.INETSVCS-FTP version is less than B.11.11.01.011" test_ref="oval:com.hp.oval:tst:20080703010"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02334"> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080703004"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="FTP.FTP-AUX version is less than C.2.6.1.3.0" test_ref="oval:com.hp.oval:tst:20080703011"/> <criterion comment="FTP.FTP-RUN version is less than C.2.6.1.3.0" test_ref="oval:com.hp.oval:tst:20080703012"/> </criteria> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02334"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="InternetSrvcs.INETSVCS2-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703013"/> <criterion comment="Patch PHNE_36193 is installed" test_ref="oval:com.hp.oval:tst:20080703014" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703003" version="0" class="vulnerability"> <metadata> <title>HP-UX Running rpc.yppasswdd, Remote Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-6419" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6419"/> <description>Unspecified vulnerability in rpc.yppasswdd in HP HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:04.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02295"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="NFS.NISPLUS-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703015"/> <criterion comment="NFS.NFS-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080703016"/> <criterion comment="NFS.NIS-CLIENT is installed" test_ref="oval:com.hp.oval:tst:20080703017"/> <criterion comment="OS-Core.CORE-ENG-A-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703018"/> <criterion comment="NFS.NFS-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703019"/> <criterion comment="NFS.KEY-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703020"/> <criterion comment="NFS.NFS-64ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703021"/> <criterion comment="NFS.NFS-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703022"/> <criterion comment="NFS.NFS-CLIENT is installed" test_ref="oval:com.hp.oval:tst:20080703023"/> <criterion comment="NFS.NFS-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703024"/> <criterion comment="NFS.NFS-ENG-A-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703025"/> <criterion comment="NFS.NIS-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703026"/> <criterion comment="NFS.NFS-PRG is installed" test_ref="oval:com.hp.oval:tst:20080703027"/> <criterion comment="NFS.NFS-SERVER is installed" test_ref="oval:com.hp.oval:tst:20080703028"/> <criterion comment="NFS.NIS-SERVER is installed" test_ref="oval:com.hp.oval:tst:20080703029"/> </criteria> <criterion comment="Patch PHNE_36168 is installed" test_ref="oval:com.hp.oval:tst:20080703030" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02295"> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080703004"/> <criterion comment="NFS.NIS2-SERVER is installed" test_ref="oval:com.hp.oval:tst:20080703031"/> <criterion comment="Patch PHNE_36449 is installed" test_ref="oval:com.hp.oval:tst:20080703032" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02295"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="NFS.NFS-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703022"/> <criterion comment="NFS.NIS2-CLIENT is installed" test_ref="oval:com.hp.oval:tst:20080703033"/> <criterion comment="NFS.NFS-ENG-A-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703025"/> <criterion comment="NFS.NISPLUS-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703015"/> <criterion comment="NFS.KEY-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703020"/> <criterion comment="NFS.NFS-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703022"/> <criterion comment="NFS.NIS2-CLIENT is installed" test_ref="oval:com.hp.oval:tst:20080703033"/> <criterion comment="NFS.NIS2-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703034"/> <criterion comment="NFS.NIS2-SERVER is installed" test_ref="oval:com.hp.oval:tst:20080703031"/> <criterion comment="NFS.NIS2-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703034"/> <criterion comment="NFS.KEY-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703020"/> <criterion comment="NFS.NIS2-SERVER is installed" test_ref="oval:com.hp.oval:tst:20080703031"/> </criteria> <criterion comment="Patch PHNE_36260 is installed" test_ref="oval:com.hp.oval:tst:20080703035" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703004" version="0" class="vulnerability"> <metadata> <title>HP-UX Running DCE, Remote Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-6195" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6195"/> <description>Buffer overflow in the sw_rpc_agent_init function in swagentd in Software Distributor (SD), and possibly other DCE applications, in HP HP-UX B.11.11 and B.11.23 allows remote attackers to execute arbitrary code or cause a denial of service via malformed arguments in an opcode 0x04 DCE RPC request.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:04.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02294"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="DCE-Core.DCEC-ENG-A-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703036"/> <criterion comment="DCE-Core.DCE-CORE-DTS is installed" test_ref="oval:com.hp.oval:tst:20080703037"/> <criterion comment="DCE-Core.DCE-CORE-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703038"/> <criterion comment="DCE-Core.DCE-CORE-SHLIB is installed" test_ref="oval:com.hp.oval:tst:20080703039"/> <criterion comment="DCE-Core.DCE-COR-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703040"/> </criteria> <criterion comment="Patch PHSS_36004 is installed" test_ref="oval:com.hp.oval:tst:20080703041" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02294"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="DCE-CoreTools.DCE-BPRG is installed" test_ref="oval:com.hp.oval:tst:20080703042"/> <criterion comment="DCE-Core.DCE-CORE-DTS is installed" test_ref="oval:com.hp.oval:tst:20080703037"/> <criterion comment="DCE-Core.DCE-CORE-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703038"/> <criterion comment="DCE-Core.DCE-COR-PA-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703043"/> <criterion comment="DCE-Core.DCE-COR-IA-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703044"/> <criterion comment="DCE-Core.DCE-COR-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703040"/> <criterion comment="DCE-Core.DCE-CORE-SHLIB is installed" test_ref="oval:com.hp.oval:tst:20080703039"/> <criterion comment="DCE-Core.DCE-IA64-SHLIB is installed" test_ref="oval:com.hp.oval:tst:20080703045"/> <criterion comment="DCE-Core.DCEC-ENG-A-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703036"/> </criteria> <criterion comment="Patch PHSS_36005 is installed" test_ref="oval:com.hp.oval:tst:20080703046" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703005" version="0" class="vulnerability"> <metadata> <title>HP-UX Running Aries PA Emulator, Local Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-5946" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5946"/> <description>Unspecified vulnerability in the Aries PA-RISC emulator on HP-UX B.11.23 and B.11.31 on the IA-64 platform allows local users to obtain unspecified access.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:04.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02285"> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080703004"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="OS-Core.CORE2-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703047"/> <criterion comment="OS-Core.CORE2-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080703048"/> </criteria> <criterion comment="Patch PHSS_36311 is installed" test_ref="oval:com.hp.oval:tst:20080703049" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02285"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="OS-Core.CORE2-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703047"/> <criterion comment="OS-Core.CORE2-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080703048"/> </criteria> <criterion comment="Patch PHSS_35528 is installed" test_ref="oval:com.hp.oval:tst:20080703050" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703006" version="0" class="vulnerability"> <metadata> <title>HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-5302" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5302"/> <description>Multiple cross-site scripting (XSS) vulnerabilities in HP System Management Homepage (SMH) in HP-UX B.11.11, B.11.23, and B.11.31, and SMH before 2.1.10 for Linux and Windows, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:04.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBMA02274"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080703004"/> </criteria> <criterion comment="SysMgmtHomepage.SMH-RUN version is less than A.2.2.6.2" test_ref="oval:com.hp.oval:tst:20080703051"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBMA02274"> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080703004"/> <criterion comment="SysMgmtHomepage.SMH-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703052"/> <criterion comment="Patch PHSS_36871 is installed" test_ref="oval:com.hp.oval:tst:20080703053" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBMA02274"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="SysMgmtHomepage.SMH-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703052"/> <criterion comment="Patch PHSS_36869 is installed" test_ref="oval:com.hp.oval:tst:20080703054" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBMA02274"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="SysMgmtHomepage.SMH-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703052"/> <criterion comment="Patch PHSS_36870 is installed" test_ref="oval:com.hp.oval:tst:20080703055" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703007" version="0" class="vulnerability"> <metadata> <title>HP-UX Running logins(1M), Remote Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-5008" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5008"/> <description>The logins command in HP-UX B.11.31, B.11.23, and B.11.11 does not correctly report password status, which allows remote attackers to obtain privileges when certain "password issues" are not detected.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:04.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02259"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="SOE.SOE is installed" test_ref="oval:com.hp.oval:tst:20080703056"/> <criterion comment="Patch PHCO_36809 is installed" test_ref="oval:com.hp.oval:tst:20080703057" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02259"> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080703004"/> <criterion comment="SOE.SOE is installed" test_ref="oval:com.hp.oval:tst:20080703056"/> <criterion comment="Patch PHCO_36003 is installed" test_ref="oval:com.hp.oval:tst:20080703058" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02259"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="SOE.SOE is installed" test_ref="oval:com.hp.oval:tst:20080703056"/> <criterion comment="Patch PHCO_36808 is installed" test_ref="oval:com.hp.oval:tst:20080703059" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703008" version="0" class="vulnerability"> <metadata> <title>HP-UX Running ARPA Transport, Remote Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-4590" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4590"/> <description>Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.11, B.11.23, and B.11.31 allows remote attackers to cause an unspecified denial of service via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:04.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02248"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703060"/> <criterion comment="Patch PHNE_35351 is installed" test_ref="oval:com.hp.oval:tst:20080703061" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02248"> <criterion comment="HP-UX B.11.31" test_ref="oval:com.hp.oval:tst:20080703004"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703060"/> <criterion comment="Patch PHNE_35352 is installed" test_ref="oval:com.hp.oval:tst:20080703062" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02248"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703060"/> <criterion comment="Patch PHNE_35766 is installed" test_ref="oval:com.hp.oval:tst:20080703063" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703009" version="0" class="vulnerability"> <metadata> <title>HP-UX Running ARPA Transport, Local Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-1994" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1994"/> <description>Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.00 allows local users to cause a denial of service via unknown vectors. NOTE: due to lack of vendor details, it is not clear whether this is the same as CVE-2007-0916.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:04.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02205"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703064"/> <criterion comment="Networking.NET-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703065"/> <criterion comment="Networking.NET-PRG is installed" test_ref="oval:com.hp.oval:tst:20080703066"/> <criterion comment="Networking.NET-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703067"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703060"/> <criterion comment="Networking.NMS2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703068"/> </criteria> <criterion comment="Patch PHNE_35729 is installed" test_ref="oval:com.hp.oval:tst:20080703069" negate="true"/> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703010" version="0" class="vulnerability"> <metadata> <title>HP-UX Running ARPA Transport, Local Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2007-0916" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0916"/> <description>Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport functionality in HP-UX B.11.11 and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:05.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02192"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Networking.NET-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703065"/> <criterion comment="Networking.NET-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703067"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703060"/> <criterion comment="Networking.NMS2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703068"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703064"/> </criteria> <criterion comment="Patch PHNE_35183 is installed" test_ref="oval:com.hp.oval:tst:20080703070" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02192"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Networking.NET-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703065"/> <criterion comment="Networking.NET-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703067"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703060"/> <criterion comment="Networking.NMS2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703068"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703064"/> </criteria> <criterion comment="Patch PHNE_35182 is installed" test_ref="oval:com.hp.oval:tst:20080703071" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703011" version="0" class="vulnerability"> <metadata> <title>HP-UX Running dtmail, Local Execution of Arbitrary Code</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-5452" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5452"/> <description>Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:05.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02162"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="CDE.CDE-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703072"/> <criterion comment="Patch PHSS_35434 is installed" test_ref="oval:com.hp.oval:tst:20080703073" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02162"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="CDE.CDE-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703072"/> <criterion comment="Patch PHSS_35433 is installed" test_ref="oval:com.hp.oval:tst:20080703074" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02162"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="CDE.CDE-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703072"/> <criterion comment="Patch PHSS_35435 is installed" test_ref="oval:com.hp.oval:tst:20080703075" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703012" version="0" class="vulnerability"> <metadata> <title>HP-UX Running Ignite-UX Server, Remote Unauthorized Access and Privilege Elevation</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-5151" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5151"/> <description>Unspecified vulnerability in HP Ignite-UX server before C.6.9.150 for HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to "gain root access" via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:05.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02157"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> </criteria> <criterion comment="Ignite-UX.BOOT-SERVICES version is less than C.6.9.150" test_ref="oval:com.hp.oval:tst:20080703076"/> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703014" version="0" class="vulnerability"> <metadata> <title>HP-UX CIFS Server (Samba) Local Unauthorized Access, Elevated Privileges</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-5091" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5091"/> <description>Unspecified vulnerability in HP-UX B.11.11 and B.11.23 CIFS Server (Samba) allows local users to gain privileges or obtain "unauthorized access" via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:05.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02155"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> </criteria> <criteria operator="OR" comment="filesets tests"> <criterion comment="CIFS-Server.CIFS-RUN version is less than A.02.03" test_ref="oval:com.hp.oval:tst:20080703077"/> <criterion comment="CIFS-Server.CIFS-UTIL version is less than A.02.03" test_ref="oval:com.hp.oval:tst:20080703078"/> <criterion comment="CIFS-Server.CIFS-ADMIN version is less than A.02.03" test_ref="oval:com.hp.oval:tst:20080703079"/> <criterion comment="CIFS-Server.CIFS-LIB version is less than A.02.03" test_ref="oval:com.hp.oval:tst:20080703080"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703015" version="0" class="vulnerability"> <metadata> <title>HP-UX running X.25 Local Denial of Service (Dos)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-4820" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4820"/> <description>Unspecified vulnehttps://gvd.ton.opsware.com/hpuxalert/add_oval/1rability in X.25 on HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:05.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02126"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="SX25-HPerf.SX25-HPERF-IP is installed" test_ref="oval:com.hp.oval:tst:20080703081"/> <criterion comment="SX25-HPerf.SX25-HPERF-PA is installed" test_ref="oval:com.hp.oval:tst:20080703082"/> <criterion comment="SX25-HPerf.COM-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703083"/> <criterion comment="SX25-HPerf.SX25-HPERF-SAM is installed" test_ref="oval:com.hp.oval:tst:20080703084"/> <criterion comment="SYNC-WAN.SYNC-ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703085"/> <criterion comment="SX25-HPerf.SX25-HPERF-PAD is installed" test_ref="oval:com.hp.oval:tst:20080703086"/> <criterion comment="SX25-HPerf.SX25-HPERF-COM is installed" test_ref="oval:com.hp.oval:tst:20080703087"/> <criterion comment="SX25-HPerf.PA-ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703088"/> <criterion comment="SX25-HPerf.COM-ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703089"/> <criterion comment="SYNC-WAN.SYNC-COM is installed" test_ref="oval:com.hp.oval:tst:20080703090"/> <criterion comment="SX25-HPerf.SX25-SNMP is installed" test_ref="oval:com.hp.oval:tst:20080703091"/> <criterion comment="SX25-HPerf.SX25-HPERF-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703092"/> <criterion comment="SX25-HPerf.IP-ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703093"/> </criteria> <criterion comment="Patch PHNE_34988 is installed" test_ref="oval:com.hp.oval:tst:20080703094" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02126"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="SX25-HPerf.SX25-SNMP is installed" test_ref="oval:com.hp.oval:tst:20080703091"/> <criterion comment="SX25-HPerf.SX25-HPERF-MAN is installed" test_ref="oval:com.hp.oval:tst:20080703092"/> <criterion comment="SX25-HPerf.SX25-HPERF-PA is installed" test_ref="oval:com.hp.oval:tst:20080703082"/> <criterion comment="SYNC-WAN.SYNC-32ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703095"/> <criterion comment="SYNC-WAN.SYNC-64ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703096"/> <criterion comment="SX25-HPerf.COM-32ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703097"/> <criterion comment="SYNC-WAN.SYNC-COM is installed" test_ref="oval:com.hp.oval:tst:20080703090"/> <criterion comment="SX25-HPerf.COM-64ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703098"/> <criterion comment="SX25-HPerf.IP-32ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703099"/> <criterion comment="SX25-HPerf.IP-64ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703100"/> <criterion comment="SX25-HPerf.PA-32ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703101"/> <criterion comment="SX25-HPerf.PA-64ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703102"/> <criterion comment="SX25-HPerf.SX25-HPERF-PAD is installed" test_ref="oval:com.hp.oval:tst:20080703086"/> <criterion comment="SX25-HPerf.SX25-HPERF-COM is installed" test_ref="oval:com.hp.oval:tst:20080703087"/> <criterion comment="SX25-HPerf.SX25-HPERF-IP is installed" test_ref="oval:com.hp.oval:tst:20080703081"/> <criterion comment="SX25-HPerf.SX25-HPEhttps://gvd.ton.opsware.com/hpuxalert/add_oval/1RF-SAM is installed" test_ref="oval:com.hp.oval:tst:20080703103"/> </criteria> <criterion comment="Patch PHNE_34009 is installed" test_ref="oval:com.hp.oval:tst:20080703104" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02126"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="SX25-HPerf.SX25-HPERF-COM is installed" test_ref="oval:com.hp.oval:tst:20080703087"/> <criterion comment="SX25-HPerf.COM-ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703089"/> <criterion comment="SX25-HPerf.IP-ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703093"/> <criterion comment="SX25-HPerf.SX25-HPERF-PAD is installed" test_ref="oval:com.hp.oval:tst:20080703086"/> <criterion comment="SYNC-WAN.SYNC-ALIB is installed" test_ref="oval:com.hp.oval:tst:20080703085"/> </criteria> <criterion comment="Patch PHNE_34999 is installed" test_ref="oval:com.hp.oval:tst:20080703105" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703017" version="0" class="vulnerability"> <metadata> <title>HP-UX Running ARPA Transport Software, Local Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-4795" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4795"/> <description>Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.11 and B.11.23 before 20060912 allows local users to cause a denial of service via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:06.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02151"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703064"/> <criterion comment="Patch PHNE_34672 is installed" test_ref="oval:com.hp.oval:tst:20080703106" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02151"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080703064"/> <criterion comment="Patch PHNE_34671 is installed" test_ref="oval:com.hp.oval:tst:20080703107" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703018" version="0" class="vulnerability"> <metadata> <title>HP-UX Running the LP Subsystem, remote Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-4188" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4188"/> <description>Unspecified vulnerability in the LP subsystem in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:06.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02139"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="InternetSrvcs.INETSVCS-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703008"/> <criterion comment="Patch PHNE_33791 is installed" test_ref="oval:com.hp.oval:tst:20080703108" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02139"> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="InternetSrvcs.INETSVCS-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703008"/> <criterion comment="Patch PHNE_35146 is installed" test_ref="oval:com.hp.oval:tst:20080703109" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02139"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="InternetSrvcs.INETSVCS-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703008"/> <criterion comment="Patch PHNE_33790 is installed" test_ref="oval:com.hp.oval:tst:20080703110" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02139"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="InternetSrvcs.INETSVCS2-RUN is installed" test_ref="oval:com.hp.oval:tst:20080703013"/> <criterion comment="Patch PHNE_33792 is installed" test_ref="oval:com.hp.oval:tst:20080703111" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703019" version="0" class="vulnerability"> <metadata> <title>HP-UX in Trusted mode, Local Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-4187" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4187"/> <description>Unspecified vulnerability in HP-UX B.11.00, B.11.11 and B.11.23, when running in trusted mode, allows local users to cause a denial of service via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:06.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02141"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="OS-Core.CORE-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080703112"/> <criterion comment="Patch PHCO_34214 is installed" test_ref="oval:com.hp.oval:tst:20080703113" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02141"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="OS-Core.CORE-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080703112"/> <criterion comment="Patch PHCO_34806 is installed" test_ref="oval:com.hp.oval:tst:20080703114" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02141"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="OS-Core.CORE2-64SLIB is installed" test_ref="oval:com.hp.oval:tst:20080703047"/> <criterion comment="OS-Core.CORE2-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080703048"/> </criteria> <criterion comment="Patch PHCO_34215 is installed" test_ref="oval:com.hp.oval:tst:20080703115" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080703020" version="0" class="vulnerability"> <metadata> <title>HP-UX mkdir(1) Local Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-3335" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3335"/> <description>Unspecified vulnerability in mkdir in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows local users to gain privileges via unknown attack vectors.</description> <oval_repository> <dates> <submitted date="2008-07-03T16:09:06.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02128"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="OS-Core.UX-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703116"/> <criterion comment="Patch PHCO_32036 is installed" test_ref="oval:com.hp.oval:tst:20080703117" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02128"> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="OS-Core.UX-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703116"/> <criterion comment="Patch PHCO_35040 is installed" test_ref="oval:com.hp.oval:tst:20080703118" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02128"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="OS-Core.UX-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703116"/> <criterion comment="Patch PHCO_34533 is installed" test_ref="oval:com.hp.oval:tst:20080703119" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02128"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="OS-Core.UX2-CORE is installed" test_ref="oval:com.hp.oval:tst:20080703120"/> <criterion comment="Patch PHCO_34151 is installed" test_ref="oval:com.hp.oval:tst:20080703121" negate="true"/> </criteria> </criteria> </definition> </definitions> <tests> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="OS-Core.ADMN-ENG-A-MAN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703001"> <object object_ref="oval:com.hp.oval:obj:20080703001"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="OS-Core.SYS-ADMIN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703002"> <object object_ref="oval:com.hp.oval:obj:20080703002"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_37290 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703003"> <object object_ref="oval:com.hp.oval:obj:20080703003"/> </patch53_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" check_existence="at_least_one_exists" comment="HP-UX B.11.31" check="all" version="1" id="oval:com.hp.oval:tst:20080703004"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:com.hp.oval:ste:20080703001"/> </uname_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="OS-Core.SYS2-ADMIN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703005"> <object object_ref="oval:com.hp.oval:obj:20080703004"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_36953 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703006"> <object object_ref="oval:com.hp.oval:obj:20080703005"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_37291 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703007"> <object object_ref="oval:com.hp.oval:obj:20080703006"/> </patch53_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3704" version="1" comment="HP Release B.11.11" check_existence="at_least_one_exists" check="all"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3389"/> </uname_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3901" version="1" comment="HP Release B.11.23" check_existence="at_least_one_exists" check="all"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3324"/> </uname_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="InternetSrvcs.INETSVCS-RUN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703008"> <object object_ref="oval:com.hp.oval:obj:20080703007"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_36192 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703009"> <object object_ref="oval:com.hp.oval:obj:20080703008"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="WUFTP-26.INETSVCS-FTP version is less than B.11.11.01.011" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703010"> <object object_ref="oval:com.hp.oval:obj:20080703009"/> <state state_ref="oval:com.hp.oval:ste:20080703002"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="FTP.FTP-AUX version is less than C.2.6.1.3.0" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703011"> <object object_ref="oval:com.hp.oval:obj:20080703010"/> <state state_ref="oval:com.hp.oval:ste:20080703003"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="FTP.FTP-RUN version is less than C.2.6.1.3.0" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703012"> <object object_ref="oval:com.hp.oval:obj:20080703011"/> <state state_ref="oval:com.hp.oval:ste:20080703003"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="InternetSrvcs.INETSVCS2-RUN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703013"> <object object_ref="oval:com.hp.oval:obj:20080703012"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_36193 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703014"> <object object_ref="oval:com.hp.oval:obj:20080703013"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NISPLUS-CORE is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703015"> <object object_ref="oval:com.hp.oval:obj:20080703014"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-SHLIBS is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703016"> <object object_ref="oval:com.hp.oval:obj:20080703015"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NIS-CLIENT is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703017"> <object object_ref="oval:com.hp.oval:obj:20080703016"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="OS-Core.CORE-ENG-A-MAN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703018"> <object object_ref="oval:com.hp.oval:obj:20080703017"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-KRN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703019"> <object object_ref="oval:com.hp.oval:obj:20080703018"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.KEY-CORE is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703020"> <object object_ref="oval:com.hp.oval:obj:20080703019"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-64ALIB is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703021"> <object object_ref="oval:com.hp.oval:obj:20080703020"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-64SLIB is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703022"> <object object_ref="oval:com.hp.oval:obj:20080703021"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-CLIENT is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703023"> <object object_ref="oval:com.hp.oval:obj:20080703022"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-CORE is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703024"> <object object_ref="oval:com.hp.oval:obj:20080703023"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-ENG-A-MAN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703025"> <object object_ref="oval:com.hp.oval:obj:20080703024"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NIS-CORE is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703026"> <object object_ref="oval:com.hp.oval:obj:20080703025"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-PRG is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703027"> <object object_ref="oval:com.hp.oval:obj:20080703026"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NFS-SERVER is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703028"> <object object_ref="oval:com.hp.oval:obj:20080703027"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NIS-SERVER is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703029"> <object object_ref="oval:com.hp.oval:obj:20080703028"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_36168 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703030"> <object object_ref="oval:com.hp.oval:obj:20080703029"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NIS2-SERVER is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703031"> <object object_ref="oval:com.hp.oval:obj:20080703030"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_36449 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703032"> <object object_ref="oval:com.hp.oval:obj:20080703031"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NIS2-CLIENT is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703033"> <object object_ref="oval:com.hp.oval:obj:20080703032"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="NFS.NIS2-CORE is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703034"> <object object_ref="oval:com.hp.oval:obj:20080703033"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_36260 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703035"> <object object_ref="oval:com.hp.oval:obj:20080703034"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="DCE-Core.DCEC-ENG-A-MAN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703036"> <object object_ref="oval:com.hp.oval:obj:20080703035"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="DCE-Core.DCE-CORE-DTS is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703037"> <object object_ref="oval:com.hp.oval:obj:20080703036"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="DCE-Core.DCE-CORE-RUN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703038"> <object object_ref="oval:com.hp.oval:obj:20080703037"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="DCE-Core.DCE-CORE-SHLIB is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080703039"> <object object_ref="oval:com.hp.oval:obj:20080703038"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence |
