Release date:
Updated on: 2012-04-17
Affected Systems:
HP Onboard Administrator (OA) 3.x
Description:
--------------------------------------------------------------------------------
Cve id: CVE-2008-7270, CVE-2009-3555, CVE-2010-4180, CVE-2012-0128, CVE-2012-0129
HP Onboard Administrator (OA) provides local and remote management of HP BladeSystem c-Class.
HP Onboard Administrator (OA) has multiple remote security vulnerabilities, malicious attackers can exploit these vulnerabilities to leak sensitive information, perform spoofing attacks, bypass certain security restrictions, operate certain data, or control vulnerability systems.
<* Source: vendor
Link: http://secunia.com/advisories/48699/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
HP
--
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://itrc.hp.com