Compaq Insight Manager XE buffer overflow in SNMP and DMI functionality

Overview The Compaq web-enabled management software contains a buffer overflow in the SNMP and DMI functionality. Remote intruders may be able to execute arbitrary code with privileges on affected systems. All versions of Compaq Insight Manager XE are affected, but Compaq Insight Manager windows...

(SSRT0738) OpenVMS Security Mandatory Update, OVMSMUP03

NO RESTRICTION FOR DISTRIBUTION PROVIDED THE ADVISORY REMAINS INTACT TITLE: SSRT0738 OpenVMS Security Mandatory Update, OVMSMUP03 SOURCE: Compaq Computer Corporation Software Security Response Team COMPONENT IMPACT: DECwindows Motif Server X-REF: None October 30, 2001 "Compaq is broadly...

CVE-2001-0728

Buffer overflow in Compaq Management Agents before 5.2, included in Compaq Web-enabled Management Software, allows local users to gain privileges...

SSRT0758 Compaq Management Software Security Advisory

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NO RESTRICTION FOR DISTRIBUTION PROVIDED THE ADVISORY REMAINS INTACT TITLE: SSRT0758 Compaq Management Software Security Advisory Date Posted: September 28, 2001 c Copyright 2001 Compaq Computer Corporation. All rights reserved. Compaq Management...

Дырка в Compaq Management

Длинное имя пользователя приводит к классическому переполнению буфера...

CVE-2001-1033

Compaq TruCluster 1.5 allows remote attackers to cause a denial of service via a port scan from a system that does not have a DNS PTR record, which causes the cluster to enter a "split-brain" state...

CVE-2001-0434

The CVE-2001-0434 issue affects the LogDataListToFile ActiveX function used in Compaq Presario Knowledge Center and Back web components. This function allows remote attackers to modify arbitrary files and cause denial of service. References indicate a patch (SSRT0716-01) is available, which shoul...

CVE-2001-0434

The LogDataListToFile ActiveX function used in 1 Knowledge Center and 2 Back web components of Compaq Presario computers allows remote attackers to modify arbitrary files and cause a denial of service...

CVE-1999-1152

The CVE-1999-1152 entry concerns Compaq/Microcom 6000 Access Integrator. Affected component: the authentication handling in the 6000 Access Integrator where, after a certain number of failed login attempts, the system does not disconnect the client. This behavior enables remote attackers to perfo...

CVE-1999-1355

The CVE-1999-1355 entry describes a vulnerability in the BMC Patrol component when installed with Compaq Insight Management Agent 4.23 or earlier, or Management Agents for Servers 4.40 or earlier. The underlying issue is that these configurations create a PFCUser account with a default password a...

CVE-1999-1151

CVE-1999-1151 affects the Compaq/Microcom 6000 Access Integrator. The issue is that the device does not time out sessions after prompting for credentials, enabling remote parties to cause a denial of service by connecting without providing a username or password. The provided documents do not spe...

CVE-1999-1152

Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of failed login attempts, which allows remote attackers to guess usernames or passwords via a brute force attack...

CVE-1999-1151

Compaq/Microcom 6000 Access Integrator does not cause a session timeout after prompting for a username or password, which allows remote attackers to cause a denial of service by connecting to the integrator without providing a username or password...

CVE-2001-0434

The LogDataListToFile ActiveX function used in 1 Knowledge Center and 2 Back web components of Compaq Presario computers allows remote attackers to modify arbitrary files and cause a denial of service...

CVE-2001-0374

The HTTP server in Compaq web-enabled management software for 1 Foundation Agents, 2 Survey, 3 Power Manager, 4 Availability Agents, 5 Intelligent Cluster Administrator, and 6 Insight Manager can be used as a generic proxy server, which allows remote attackers to bypass access restrictions via th...

CVE-2001-0374

The HTTP server in Compaq web-enabled management software for 1 Foundation Agents, 2 Survey, 3 Power Manager, 4 Availability Agents, 5 Intelligent Cluster Administrator, and 6 Insight Manager can be used as a generic proxy server, which allows remote attackers to bypass access restrictions via th...

CVE-2001-0374

CVE-2001-0374 affects the HTTP server in Compaq Web‑Based Management Agent across multiple products (Foundation Agents, Survey, Power Manager, Availability Agents, Intelligent Cluster Administrator, Insight Manager). The vulnerability allows the management HTTP server to act as a generic proxy, e...

Compaq web-enabled management software acts as generic proxy

Overview Remote attackers may be able to relay connections through systems running the Compaq web-enabled management software. Attackers relaying connection in this way may be able to access restricted portions of the network or disguise their identity while attacking other systems. Many Compaq...

ADVISORY SSRT0715 Compaq Management Software Potential Security Vulnerability

The important part of this for this list is the impact and solution available for NT even though it's lengthy and covers all affected platforms. regards -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SOFTWARE SECURITY RESPONSE TEAM Compaq Global Services - Compaq Computer Corporation Send Security...

Проблемы в Compaq Management Software (HTTP proxy)

Web-Сервис установленный на порт 2301 работает как HTTP-прокси при запросе внешнего документа...