New/modified HP-UX 11 OVALs
|
|
Wood, Michael
|
Here are some new and modified HP-UX 11 OVALs
oval:com.hp.oval:def:20080707001 CVE-2006-3201 oval:com.hp.oval:def:20080707002 CVE-2006-2574 oval:com.hp.oval:def:20080707003 CVE-2006-2551 oval:org.mitre.oval:def:1754 CVE-2006-1689 *modified oval:org.mitre.oval:def:1586 CVE-2006-0436 *modified oval:com.hp.oval:def:20080707008 CVE-2005-4451 oval:com.hp.oval:def:20080707009 CVE-2005-4316 oval:com.hp.oval:def:20080707010 CVE-2005-4090 oval:org.mitre.oval:def:598 CVE-2005-3779 *modified oval:com.hp.oval:def:20080707012 CVE-2005-3670 oval:org.mitre.oval:def:766 CVE-2005-3565 *modified oval:org.mitre.oval:def:1572 CVE-2005-3564 *modified oval:org.mitre.oval:def:1276 CVE-2005-3296 *modified oval:com.hp.oval:def:20080707017 CVE-2005-0364 oval:com.hp.oval:def:20080707018 CVE-2004-0965 oval:com.hp.oval:def:20080707019 CVE-2004-1029 oval:com.hp.oval:def:20080707020 CVE-2004-2665 oval:com.hp.oval:def:20080707021 CVE-2004-1328 oval:com.hp.oval:def:20080707022 CVE-2004-0952 oval:com.hp.oval:def:20080707023 CVE-2004-1375 Thanks, Michael Wood Hewlett Packard To unsubscribe, send an email message to LISTSERV@... with SIGNOFF OVAL-DISCUSSION-LIST in the BODY of the message. If you have difficulties, write to OVAL-DISCUSSION-LIST-request@.... <?xml version="1.0" encoding="UTF-8"?> <oval_definitions xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" xmlns:hpux-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" xsi:schemaLocation="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux hpux-definitions-schema.xsd"> <generator> <oval:product_name>Hewlett-Packard</oval:product_name> <oval:schema_version>5.4</oval:schema_version> <oval:timestamp>2008-07-07T16:38:36.000-04:00</oval:timestamp> </generator> <definitions> <definition id="oval:com.hp.oval:def:20080707001" version="0" class="vulnerability"> <metadata> <title>HP-UX Kernel Local Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-3201" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3201"/> <description>Unspecified vulnerability in the kernel in HP-UX B.11.00, B.11.11, and B.11.23 allows local users to cause an unspecified denial of service via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02127 "> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707001"/> <criterion comment="Patch PHKL_34193 is installed" test_ref="oval:com.hp.oval:tst:20080707002" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02127 "> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707001"/> <criterion comment="Patch PHKL_34192 is installed" test_ref="oval:com.hp.oval:tst:20080707003" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02127 "> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707001"/> <criterion comment="Patch PHKL_34194 is installed" test_ref="oval:com.hp.oval:tst:20080707004" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707002" version="0" class="vulnerability"> <metadata> <title>HP-UX Running Software Distributor Local Elevation of Privilege</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-2574" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2574"/> <description>Multiple unspecified vulnerabilities in Software Distributor in HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allow local users to gain privileges via unspecified attack vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02114"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="SW-DIST.SD-CMDS is installed" test_ref="oval:com.hp.oval:tst:20080707005"/> <criterion comment="Patch PHCO_34539 is installed" test_ref="oval:com.hp.oval:tst:20080707006" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02114"> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="SW-DIST.SD-CMDS is installed" test_ref="oval:com.hp.oval:tst:20080707005"/> <criterion comment="Patch PHCO_34814 is installed" test_ref="oval:com.hp.oval:tst:20080707007" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02114"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="SW-DIST.SD-CMDS is installed" test_ref="oval:com.hp.oval:tst:20080707005"/> <criterion comment="Patch PHCO_34568 is installed" test_ref="oval:com.hp.oval:tst:20080707008" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02114"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="SW-DIST.SD-CMDS version is less than B.11.23.0606.045" test_ref="oval:com.hp.oval:tst:20080707009"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707003" version="0" class="vulnerability"> <metadata> <title>HP-UX Local Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-2551" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2551"/> <description>Unspecified vulnerability in the kernel in HP-UX B.11.00 allows local users to cause an unspecified denial of service via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02120 "> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707001"/> <criterion comment="Patch PHKL_34940 is installed" test_ref="oval:com.hp.oval:tst:20080707010" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02120 "> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707001"/> <criterion comment="Patch PHKL_34406 is installed" test_ref="oval:com.hp.oval:tst:20080707011" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1754" version="0" class="vulnerability"> <metadata> <title>HP-UX su(1) Local Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-1689" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1689"/> <description>Unspecified vulnerability in su in HP HP-UX B.11.11, when using the LDAP netgroup feature, allows local users to gain unspecified access.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02111 "> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="OS-Core.UX-CORE is installed" test_ref="oval:com.hp.oval:tst:20080707012"/> <criterion comment="Patch PHCO_34545 is installed" test_ref="oval:com.hp.oval:tst:20080707013" negate="true"/> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1586" version="0" class="vulnerability"> <metadata> <title>HP-UX Local Increased Privilege</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2006-0436" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0436"/> <description>Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain privileges via unknown attack vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02091 "> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="OS-Core.CORE-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080707025"/> <criterion comment="Patch PHCO_30402 is installed" test_ref="oval:com.hp.oval:tst:20080707026" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02091 "> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="OS-Core.CORE-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080707025"/> <criterion comment="Patch PHCO_32280 is installed" test_ref="oval:com.hp.oval:tst:20080707027" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02091 "> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="OS-Core.CORE-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080707025"/> <criterion comment="Patch PHCO_29249 is installed" test_ref="oval:com.hp.oval:tst:20080707028" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707008" version="0" class="vulnerability"> <metadata> <title>HP-UX Running Software Distributor (SD) Remote Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-4451" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4451"/> <description>Unspecified vulnerability in Software Distributor in HP-UX B.11.11 allows remote attackers to gain access via unspecified attack vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX02089 "> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="SW-DIST.SD-AGENT is installed" test_ref="oval:com.hp.oval:tst:20080707014"/> <criterion comment="SW-DIST.SD-CMDS is installed" test_ref="oval:com.hp.oval:tst:20080707005"/> </criteria> <criterion comment="Patch PHCO_33822 is installed" test_ref="oval:com.hp.oval:tst:20080707029" negate="true"/> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707009" version="0" class="vulnerability"> <metadata> <title>HP-UX running TCP/IP Remote Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-4316" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4316"/> <description>HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02087"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="Streams.STREAMS-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707030"/> <criterion comment="Patch PHNE_34131 is installed" test_ref="oval:com.hp.oval:tst:20080707031" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02087"> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="Networking.NET-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707032"/> <criterion comment="Patch PHNE_33427 is installed" test_ref="oval:com.hp.oval:tst:20080707033" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02087"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="Streams.STREAMS-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707030"/> <criterion comment="Patch PHNE_30161 is installed" test_ref="oval:com.hp.oval:tst:20080707034" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02087"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="Streams.STREAMS2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707035"/> <criterion comment="Patch PHKL_31500 is installed" test_ref="oval:com.hp.oval:tst:20080707036" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707010" version="0" class="vulnerability"> <metadata> <title>HP-UX Running IPSec, Remote Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-4090" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4090"/> <description>Unspecified vulnerability in HP-UX B.11.00 to B.11.23, when IPSEC is running, allows remote attackers to have unknown impact.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02082"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="IPSec.IPSEC2-KRN version is less than A.01.07.02" test_ref="oval:com.hp.oval:tst:20080707037"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02082"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="IPSec.IPSEC2-KRN version is less than A.01.05.01" test_ref="oval:com.hp.oval:tst:20080707038"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02082"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="IPSec.IPSEC2-KRN version is less than A.02.01" test_ref="oval:com.hp.oval:tst:20080707039"/> </criteria> </criteria> </definition> <definition id="oval:org.mitre.oval:def:598" version="0" class="vulnerability"> <metadata> <title>HP-UX Running xterm Local Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-3779" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3779"/> <description>Unspecified vulnerability in xterm for HP-UX 11.00, 11.11, and 11.23 allows local users to gain privileges via unknown vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02075"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="X11.X11-RUN-CL is installed" test_ref="oval:com.hp.oval:tst:20080707040"/> <criterion comment="Patch PHSS_34102 is installed" test_ref="oval:com.hp.oval:tst:20080707041" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02075"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="X11.X11-RUN-CL is installed" test_ref="oval:com.hp.oval:tst:20080707040"/> <criterion comment="Patch PHSS_34160 is installed" test_ref="oval:com.hp.oval:tst:20080707042" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02075"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="X11.X11-RUN-CL is installed" test_ref="oval:com.hp.oval:tst:20080707040"/> <criterion comment="Patch PHSS_34159 is installed" test_ref="oval:com.hp.oval:tst:20080707043" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707012" version="0" class="vulnerability"> <metadata> <title>HP-UX Running IPSec, Remote Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-3670" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3670"/> <description>Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in HP HP-UX B.11.00, B.11.11, and B.11.23 running IPSec, HP Jetdirect 635n IPv6/IPsec Print Server, and HP Tru64 UNIX 5.1B-3 and 5.1B-2/PK4, allow remote attackers to cause a denial of service via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the HP advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02076"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="IPSec.IPSEC2-KRN version is less than A.02.01" test_ref="oval:com.hp.oval:tst:20080707039"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02076"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="IPSec.IPSEC2-KRN version is less than A.01.05.01" test_ref="oval:com.hp.oval:tst:20080707038"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02076"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="IPSec.IPSEC2-KRN version is less than A.02.01" test_ref="oval:com.hp.oval:tst:20080707039"/> </criteria> </criteria> </definition> <definition id="oval:org.mitre.oval:def:766" version="0" class="vulnerability"> <metadata> <title>HP-UX Trusted Mode remshd, Remote Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-3565" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3565"/> <description>Unknown vulnerability in remshd daemon in HP-UX B.11.00, B.11.11, and B.11.23 while running in "Trusted Mode" allows remote attackers to gain unauthorized system access via unknown attack vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02072"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="InternetSrvcs.INETSVCS-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707044"/> <criterion comment="Patch PHNE_33791 is installed" test_ref="oval:com.hp.oval:tst:20080707045" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02072"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="InternetSrvcs.INETSVCS-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707044"/> <criterion comment="Patch PHNE_33790 is installed" test_ref="oval:com.hp.oval:tst:20080707046" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02072"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="InternetSrvcs.INETSVCS2-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707047"/> <criterion comment="Patch PHNE_33792 is installed" test_ref="oval:com.hp.oval:tst:20080707048" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1572" version="0" class="vulnerability"> <metadata> <title>HP-UX envd, Local Execution of Privileged Code</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-3564" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3564"/> <description>envd daemon in HP-UX B.11.00 through B.11.11 allows local users to obtain privileges via unknown attack vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02073"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="OS-Core.UX-CORE is installed" test_ref="oval:com.hp.oval:tst:20080707012"/> <criterion comment="Patch PHCO_33967 is installed" test_ref="oval:com.hp.oval:tst:20080707049" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02073"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="OS-Core.UX-CORE is installed" test_ref="oval:com.hp.oval:tst:20080707012"/> <criterion comment="Patch PHCO_33989 is installed" test_ref="oval:com.hp.oval:tst:20080707050" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:org.mitre.oval:def:1276" version="0" class="vulnerability"> <metadata> <title>HP-UX ftpd Remote Unauthorized Data Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-3296" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3296"/> <description>The FTP server in HP-UX 10.20, B.11.00, and B.11.11, allows remote attackers to list arbitrary directories as root by running the LIST command before logging in.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02071 "> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="InternetSrvcs.INETSVCS-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707044"/> <criterion comment="Patch PHNE_24395 is installed" test_ref="oval:com.hp.oval:tst:20080707051" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX02071 "> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="InternetSrvcs.INETSVCS-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707044"/> <criterion comment="Patch PHNE_23949 is installed" test_ref="oval:com.hp.oval:tst:20080707052" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707017" version="0" class="vulnerability"> <metadata> <title>HP-UX Running BIND v9.2.0, Remote Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2005-0364" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0364"/> <description>Unknown vulnerability in BIND 9.2.0 in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to cause a denial of service.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01117"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="BINDv920.INETSVCS-BIND version is less than B.11.11.01.006" test_ref="oval:com.hp.oval:tst:20080707057"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01117"> <criterion comment="HP Release B.11.22" test_ref="oval:org.mitre.oval:tst:1015"/> <criterion comment="InternetSrvcs.INETSVCS2-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707047"/> <criterion comment="Patch PHNE_32783 is installed" test_ref="oval:com.hp.oval:tst:20080707058" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01117"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="BINDv920.INETSVCS-BIND version is less than B.11.00.01.004" test_ref="oval:com.hp.oval:tst:20080707059"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01117"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="InternetSrvcs.INETSVCS2-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707047"/> <criterion comment="Patch PHNE_32443 is installed" test_ref="oval:com.hp.oval:tst:20080707060" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707018" version="0" class="vulnerability"> <metadata> <title>HP-UX stmkfont Local Unauthorized Privileged Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2004-0965" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0965"/> <description>stmkfont in HP-UX B.11.00 through B.11.23 relies on the user-specified PATH when executing certain commands, which allows local users to execute arbitrary code by modifying the PATH environment variable to point to malicious programs.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:36.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01088 "> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="X11.X11-FONTSRV is installed" test_ref="oval:com.hp.oval:tst:20080707061"/> <criterion comment="Patch PHSS_31988 is installed" test_ref="oval:com.hp.oval:tst:20080707062" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01088 "> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="X11.X11-FONTSRV is installed" test_ref="oval:com.hp.oval:tst:20080707061"/> <criterion comment="Patch PHSS_32196 is installed" test_ref="oval:com.hp.oval:tst:20080707063" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01088 "> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="X11.X11-FONTSRV is installed" test_ref="oval:com.hp.oval:tst:20080707061"/> <criterion comment="Patch PHSS_31987 is installed" test_ref="oval:com.hp.oval:tst:20080707064" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01088 "> <criterion comment="HP Release B.11.22" test_ref="oval:org.mitre.oval:tst:1015"/> <criterion comment="X11.X11-FONTSRV is installed" test_ref="oval:com.hp.oval:tst:20080707061"/> <criterion comment="Patch PHSS_31989 is installed" test_ref="oval:com.hp.oval:tst:20080707065" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01088 "> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criterion comment="X11.X11-FONTSRV is installed" test_ref="oval:com.hp.oval:tst:20080707061"/> <criterion comment="Patch PHSS_31990 is installed" test_ref="oval:com.hp.oval:tst:20080707066" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707019" version="0" class="vulnerability"> <metadata> <title>HP-UX Java Web Start, Remote Unauthorized Privileged Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2004-1029" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1029"/> <description>The Sun Java Plugin capability in Java 2 Runtime Environment (JRE) 1.4.2_01, 1.4.2_04, and possibly earlier versions, does not properly restrict access between Javascript and Java applets during data transfer, which allows remote attackers to load unsafe classes and execute arbitrary code by using the reflection API to access private Java packages.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:37.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="AND" comment="Criteria meets Security Bulletin HPSBUX01214"> <criteria operator="OR" comment="platforms"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> </criteria> <criteria operator="OR" comment="filesets tests"> <criterion comment="Jre15.JRE15-IPF64 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707067"/> <criterion comment="Jre15.JRE15-COM version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707068"/> <criterion comment="Jre15.JRE15-COM-DOC version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707069"/> <criterion comment="Jre15.JRE15-IPF64-HS version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707070"/> <criterion comment="Jre15.JRE15-PA20 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707071"/> <criterion comment="Jdk15.JDK15-COM version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707072"/> <criterion comment="Jre15.JRE15-PA20-HS version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707073"/> <criterion comment="Jdk15.JDK15-DEMO version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707074"/> <criterion comment="Jre15.JRE15-PA20W version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707075"/> <criterion comment="Jre15.JRE15-PA20W-HS version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707076"/> <criterion comment="Jdk15.JDK15-IPF32 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707077"/> <criterion comment="Jdk15.JDK15-IPF64 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707078"/> <criterion comment="Jre15.JRE15-PNV2 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707079"/> <criterion comment="Jre15.JRE15-PNV2-H version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707080"/> <criterion comment="Jdk15.JDK15-PA20 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707081"/> <criterion comment="Jre15.JRE15-PWV2 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707082"/> <criterion comment="Jdk15.JDK15-PA20W version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707083"/> <criterion comment="Jre15.JRE15-IPF32 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707084"/> <criterion comment="Jre15.JRE15-PWV2-H version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707085"/> <criterion comment="Jdk15.JDK15-PNV2 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707086"/> <criterion comment="Jdk15.JDK15-PWV2 version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707087"/> <criterion comment="Jre15.JRE15-IPF32-HS version is less than 1.5.0.01.00" test_ref="oval:com.hp.oval:tst:20080707088"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707020" version="0" class="vulnerability"> <metadata> <title>HP-UX Running ARPA Transport, Local Denial of Service (DoS)</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2004-2665" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2665"/> <description>Unspecified vulnerability in the Address and Routing Parameter Area (ARPA) transport software in HP-UX B.11.00, B.11.04, and B.11.11 before 20040628 allows local users to cause a denial of service via unspecified vectors.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:37.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01054"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Networking.NET-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707032"/> <criterion comment="Networking.NET-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707089"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707090"/> <criterion comment="Networking.NMS2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707091"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707001"/> </criteria> <criterion comment="Patch PHNE_29887 is installed" test_ref="oval:com.hp.oval:tst:20080707092" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01054"> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Networking.NET-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707032"/> <criterion comment="Networking.NET-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707089"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707090"/> <criterion comment="Networking.NMS2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707091"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707001"/> </criteria> <criterion comment="Patch PHNE_30905 is installed" test_ref="oval:com.hp.oval:tst:20080707093" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01054"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Networking.NET-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707032"/> <criterion comment="Networking.NET-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707089"/> <criterion comment="Networking.NET2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707090"/> <criterion comment="Networking.NMS2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707091"/> <criterion comment="OS-Core.CORE2-KRN is installed" test_ref="oval:com.hp.oval:tst:20080707001"/> </criteria> <criterion comment="Patch PHNE_29473 is installed" test_ref="oval:com.hp.oval:tst:20080707094" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707021" version="0" class="vulnerability"> <metadata> <title>HP-UX Running newgrp(1), Local Privilege Elevation</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2004-1328" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1328"/> <description>Unknown vulnerability in newgrp in HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain elevated privileges.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:37.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01102"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="OS-Core.CMDS-AUX is installed" test_ref="oval:com.hp.oval:tst:20080707095"/> <criterion comment="Patch PHCO_26385 is installed" test_ref="oval:com.hp.oval:tst:20080707096" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01102"> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criterion comment="OS-Core.CORE-SHLIBS is installed" test_ref="oval:com.hp.oval:tst:20080707025"/> <criterion comment="Patch PHCO_32280 is installed" test_ref="oval:com.hp.oval:tst:20080707027" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01102"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criterion comment="OS-Core.CMDS-AUX is installed" test_ref="oval:com.hp.oval:tst:20080707095"/> <criterion comment="Patch PHCO_29682 is installed" test_ref="oval:com.hp.oval:tst:20080707097" negate="true"/> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707022" version="0" class="vulnerability"> <metadata> <title>HP-UX Ignite-UX, Remote Unauthorized Access</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2004-0952" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0952"/> <description>HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote attackers to modify data or cause disk consumption.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:38.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01219"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Ignite-UX.BOOT-KRN-11-11 version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707098"/> <criterion comment="Ignite-UX.BOOT-SERVICES version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707099"/> <criterion comment="Ignite-UX.FILE-SRV-11-11 version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707100"/> <criterion comment="Ignite-UX.MGMT-TOOLS version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707101"/> <criterion comment="Ignite-UX.IGNITE version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707102"/> <criterion comment="Ignite-UX.OBAM-RUN version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707103"/> <criterion comment="Ignite-UX.RECOVERY version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707104"/> </criteria> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01219"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Ignite-UX.BOOT-KRN-11-00 version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707105"/> <criterion comment="Ignite-UX.BOOT-SERVICES version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707099"/> <criterion comment="Ignite-UX.FILE-SRV-11-00 version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707106"/> <criterion comment="Ignite-UX.MGMT-TOOLS version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707101"/> <criterion comment="Ignite-UX.IGNITE version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707102"/> <criterion comment="Ignite-UX.OBAM-RUN version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707103"/> <criterion comment="Ignite-UX.RECOVERY version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707104"/> </criteria> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01219"> <criterion comment="HP Release B.11.22" test_ref="oval:org.mitre.oval:tst:1015"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Ignite-UX.BOOT-COMMON-IA version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707107"/> <criterion comment="Ignite-UX.BOOT-KRN-11-22 version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707108"/> <criterion comment="Ignite-UX.BOOT-SERVICES version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707099"/> <criterion comment="Ignite-UX.FILESRV-1122IA version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707109"/> <criterion comment="Ignite-UX.CFG-FILE-11-22 version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707110"/> <criterion comment="Ignite-UX.MGMT-TOOLS version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707101"/> <criterion comment="Ignite-UX.IGNITE version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707102"/> <criterion comment="Ignite-UX.OBAM-RUN version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707103"/> <criterion comment="Ignite-UX.RECOVERY version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707104"/> </criteria> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01219"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="Ignite-UX.BOOT-COMMON-IA version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707107"/> <criterion comment="Ignite-UX.BOOT-KRN-11-23 version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707111"/> <criterion comment="Ignite-UX.BOOT-SERVICES version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707099"/> <criterion comment="Ignite-UX.MGMT-TOOLS version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707101"/> <criterion comment="Ignite-UX.IGNITE version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707102"/> <criterion comment="Ignite-UX.OBAM-RUN version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707103"/> <criterion comment="Ignite-UX.RECOVERY version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707104"/> <criterion comment="Ignite-UX.FILE-SRV-11-23 version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707112"/> <criterion comment="Ignite-UX.BOOT-COMMON-PA version is less than C.6.2.241" test_ref="oval:com.hp.oval:tst:20080707113"/> </criteria> </criteria> </criteria> </definition> <definition id="oval:com.hp.oval:def:20080707023" version="0" class="vulnerability"> <metadata> <title>HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege</title> <affected family="unix"> <platform>HP-UX 11</platform> </affected> <reference source="CVE" ref_id="CVE-2004-1375" ref_url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1375"/> <description>Unknown vulnerability in System Administration Manager (SAM) in HP-UX B.11.00, B.11.11, B.11.22, and B.11.23 allows local users to gain privileges.</description> <oval_repository> <dates> <submitted date="2008-07-07T16:38:38.000-04:00"> <contributor organization="Hewlett-Packard">Michael Wood</contributor> </submitted> </dates> <status>DRAFT</status> </oval_repository> </metadata> <criteria operator="OR"> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01104"> <criterion comment="HP Release B.11.11" test_ref="oval:org.mitre.oval:tst:3704"/> <criterion comment="SystemAdmin.OBAM-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707114"/> <criterion comment="Patch PHSS_31240 is installed" test_ref="oval:com.hp.oval:tst:20080707115" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01104"> <criterion comment="HP Release B.11.04" test_ref="oval:org.mitre.oval:tst:3294"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="InternetSrvcs.INETSVCS-BOOT is installed" test_ref="oval:com.hp.oval:tst:20080707116"/> <criterion comment="OS-Core.UX-CORE is installed" test_ref="oval:com.hp.oval:tst:20080707012"/> <criterion comment="SystemAdmin.OBAM-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707114"/> <criterion comment="SystemAdmin.SAM is installed" test_ref="oval:com.hp.oval:tst:20080707117"/> </criteria> <criterion comment="Patch PHCO_32549 is installed" test_ref="oval:com.hp.oval:tst:20080707118" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01104"> <criterion comment="HP Release B.11.22" test_ref="oval:org.mitre.oval:tst:1015"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="SystemAdmin.OBAM-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707114"/> <criterion comment="SystemAdmin.OBAM-RUN-IA is installed" test_ref="oval:com.hp.oval:tst:20080707119"/> </criteria> <criterion comment="Patch PHSS_31243 is installed" test_ref="oval:com.hp.oval:tst:20080707120" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01104"> <criterion comment="HP Release B.11.00" test_ref="oval:org.mitre.oval:tst:3571"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="InternetSrvcs.INETSVCS-BOOT is installed" test_ref="oval:com.hp.oval:tst:20080707116"/> <criterion comment="OS-Core.UX-CORE is installed" test_ref="oval:com.hp.oval:tst:20080707012"/> <criterion comment="SystemAdmin.OBAM-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707114"/> <criterion comment="SystemAdmin.SAM is installed" test_ref="oval:com.hp.oval:tst:20080707117"/> </criteria> <criterion comment="Patch PHCO_28125 is installed" test_ref="oval:com.hp.oval:tst:20080707121" negate="true"/> </criteria> <criteria operator="AND" comment="Criteria meets HP Security Bulletin HPSBUX01104"> <criterion comment="HP Release B.11.23" test_ref="oval:org.mitre.oval:tst:3901"/> <criteria operator="OR" comment="filesets tests"> <criterion comment="SystemAdmin.OBAM-RUN is installed" test_ref="oval:com.hp.oval:tst:20080707114"/> <criterion comment="SystemAdmin.OBAM-RUN-IA is installed" test_ref="oval:com.hp.oval:tst:20080707119"/> </criteria> <criterion comment="Patch PHSS_31817 is installed" test_ref="oval:com.hp.oval:tst:20080707122" negate="true"/> </criteria> </criteria> </definition> </definitions> <tests> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="OS-Core.CORE2-KRN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707001"> <object object_ref="oval:com.hp.oval:obj:20080707001"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHKL_34193 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707002"> <object object_ref="oval:com.hp.oval:obj:20080707002"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHKL_34192 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707003"> <object object_ref="oval:com.hp.oval:obj:20080707003"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHKL_34194 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707004"> <object object_ref="oval:com.hp.oval:obj:20080707004"/> </patch53_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3571" version="1" check="all" comment="HP Release B.11.00" check_existence="at_least_one_exists"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3813"/> </uname_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3704" version="1" comment="HP Release B.11.11" check_existence="at_least_one_exists" check="all"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3389"/> </uname_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3901" version="1" comment="HP Release B.11.23" check_existence="at_least_one_exists" check="all"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3324"/> </uname_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="SW-DIST.SD-CMDS is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707005"> <object object_ref="oval:com.hp.oval:obj:20080707005"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_34539 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707006"> <object object_ref="oval:com.hp.oval:obj:20080707006"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_34814 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707007"> <object object_ref="oval:com.hp.oval:obj:20080707007"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_34568 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707008"> <object object_ref="oval:com.hp.oval:obj:20080707008"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="SW-DIST.SD-CMDS version is less than B.11.23.0606.045" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707009"> <object object_ref="oval:com.hp.oval:obj:20080707005"/> <state state_ref="oval:com.hp.oval:ste:20080707001"/> </swlist_test> <uname_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix" id="oval:org.mitre.oval:tst:3294" version="1" check="all" comment="HP Release B.11.04" check_existence="at_least_one_exists"> <object object_ref="oval:org.mitre.oval:obj:2759"/> <state state_ref="oval:org.mitre.oval:ste:3271"/> </uname_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHKL_34940 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707010"> <object object_ref="oval:com.hp.oval:obj:20080707009"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHKL_34406 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707011"> <object object_ref="oval:com.hp.oval:obj:20080707010"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="OS-Core.UX-CORE is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707012"> <object object_ref="oval:com.hp.oval:obj:20080707011"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_34545 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707013"> <object object_ref="oval:com.hp.oval:obj:20080707012"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="SW-DIST.SD-AGENT is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707014"> <object object_ref="oval:com.hp.oval:obj:20080707013"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="OS-Core.CORE-SHLIBS is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707025"> <object object_ref="oval:com.hp.oval:obj:20080707024"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_30402 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707026"> <object object_ref="oval:com.hp.oval:obj:20080707025"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_32280 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707027"> <object object_ref="oval:com.hp.oval:obj:20080707026"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_29249 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707028"> <object object_ref="oval:com.hp.oval:obj:20080707027"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHCO_33822 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707029"> <object object_ref="oval:com.hp.oval:obj:20080707028"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Streams.STREAMS-KRN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707030"> <object object_ref="oval:com.hp.oval:obj:20080707029"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_34131 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707031"> <object object_ref="oval:com.hp.oval:obj:20080707030"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Networking.NET-KRN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707032"> <object object_ref="oval:com.hp.oval:obj:20080707031"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_33427 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707033"> <object object_ref="oval:com.hp.oval:obj:20080707032"/> </patch53_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHNE_30161 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707034"> <object object_ref="oval:com.hp.oval:obj:20080707033"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Streams.STREAMS2-KRN is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707035"> <object object_ref="oval:com.hp.oval:obj:20080707034"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHKL_31500 is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707036"> <object object_ref="oval:com.hp.oval:obj:20080707035"/> </patch53_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="IPSec.IPSEC2-KRN version is less than A.01.07.02" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707037"> <object object_ref="oval:com.hp.oval:obj:20080707036"/> <state state_ref="oval:com.hp.oval:ste:20080707002"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="IPSec.IPSEC2-KRN version is less than A.01.05.01" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707038"> <object object_ref="oval:com.hp.oval:obj:20080707036"/> <state state_ref="oval:com.hp.oval:ste:20080707003"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="IPSec.IPSEC2-KRN version is less than A.02.01" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707039"> <object object_ref="oval:com.hp.oval:obj:20080707036"/> <state state_ref="oval:com.hp.oval:ste:20080707004"/> </swlist_test> <swlist_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="X11.X11-RUN-CL is installed" check="at least one" version="1" id="oval:com.hp.oval:tst:20080707040"> <object object_ref="oval:com.hp.oval:obj:20080707037"/> </swlist_test> <patch53_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#hpux" check_existence="at_least_one_exists" comment="Patch PHSS_34102 is installed" check="at least one" v | |||||||||||||||
