CVE-2008-2939

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2008-2939 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The original article can be found at: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01800059

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2008-2939

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* Business Availability Center v8.01 and earlier on Windows
* Business Availability Center v8.01 and earlier on Solaris

Potential security vulnerabilities have been identified with HP Business Availability Center running Apache. The vulnerabilities could be remotely exploited to allow Cross Site Scripting, Cross Site Request Forgery, and Denial of Service.

Patch Availability:
HP has made the following updated product kit available to resolve the vulnerabilities.
The HP Business Availability Center v8.02 kit is available on the HP Software Support Online portal at: http://support.openview.hp.com/support.jsp .

CVE Information:
CVE-2008-2939
CVE-2008-2364
CVE-2008-0005
CVE-2007-6422
CVE-2007-6421
CVE-2007-6420
CVE-2007-6388
CVE-2007-5000

Disclosure Timeline:
2010-05-25: Release Date
2010-05-25: Last Updated

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus