TUCoPS :: HP/UX :: vvault6.htm

HP-UX VirtualVault TGP vulnerability
Vulnerability

    VVOS TGP

Affected

    HP9000 Series 7/800 running  HP-UX 10.24 (VVOS) with  VirtualVault
    A.03.50  (either  US/Canada  or  International), _ONLY_ with patch
    PHSS_17692 installed.

Description

    Following   is   based   on   HP   Support   Information  Digests.
    VirtualVault A.03.50 patch  PHSS_17692 introduced a  vulnerability
    in the Trusted  Gateway Proxy (TGP)  that could allow  programs to
    be proxied by the TGP without having proper access.

Solution

    This problem can be eliminated by installing the following  patch,
    which supersedes the original PHSS_17692.  HP recommends that  the
    following patch be loaded as applicable for HP-UX 10.24 (VVOS):

        with VirtualVault A.03.50 (International):      PHSS_20476
        with VirtualVault A.03.50 (US/Canada):          PHSS_20476

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH