| VID |
16113 |
| Severity |
40 |
| Port |
69 |
| Protocol |
UDP |
| Class |
TFTP |
| Detailed Description |
The HP Ignite-UX is vulnerable to a Password File Disclosure Vulnerability via the TFTP service. Hewlett-Packard Ignite-UX is an HP-UX administration toolset for creating disk images to install and restore complete HP-UX systems. HP-UX B.11.00, B11.11, B11.22, and B.11.23 running the HP Ignite-UX application before C.6.2.241 could allow a remote attacker to bypass security and obtain a copy of the passwd file. The HP Ignite-UX can use a TFTP server to facilitate anonymous access to configuration data. An error in handling of the "make_recovery" command can cause a copy of the "/etc/passwd" file to be created in the TFTP server directory tree and allow a remote attacker anonymous access.
* References:
http://itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX01219
http://www.corsaire.com/advisories/c041123-001.txt
http://secunia.com/advisories/16456/
http://www.securitytracker.com/alerts/2005/Aug/1014711.html
http://www.ciac.org/ciac/bulletins/p-277.shtml
* Platforms Affected:
HP Ignite-UX versions C.6.2.240 and earlier
Hewlett-Packard Company, HP-UX B.11.00
Hewlett-Packard Company, HP-UX B.11.11
Hewlett-Packard Company, HP-UX B.11.22
Hewlett-Packard Company, HP-UX B.11.23 |
| Recommendation |
Apply the HP Ignite-UX version C.6.2.241 patches. Hewlett-Packard customers can obtain patches for versions B.11.0, B.11.11, B.11.22, and B.11.23 (patch Ignite-UX_All_C.6.2.241.depot contains fixes for all four), available from the Hewlett-Packard Company Web site at http://www.hp.com/go/softwaredepot
-- OR --
Consider disabling the affected TFTP server if it is not required. Otherwise restrict access to trusted hosts only. |
| Related URL |
CVE-2004-0951 (CVE) |
| Related URL |
14568 (SecurityFocus) |
| Related URL |
21858 (ISS) |
|
