----------------------------------------------------------------------

Are you missing:

SECUNIA ADVISORY ID:

Critical:

Impact:

Where:

within the advisory below?

This is now part of the Secunia commercial solutions.

Click here to learn more about our commercial solutions:
http://secunia.com/advisories/business_solutions/
        
Click here to trial our solutions:
http://secunia.com/advisories/try_vi/

----------------------------------------------------------------------

TITLE:
HP Insight Control Suite For Linux Nagios Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA35002

VERIFY ADVISORY:
http://secunia.com/advisories/35002/

DESCRIPTION:
HP has acknowledged some vulnerabilities in HP Insight Control Suite
For Linux, where one has an known impact and the others  can be
exploited by malicious users to bypass certain security restrictions
or by malicious people to conduct cross-site request forgery
attacks.

The vulnerabilities are caused due to the usage of vulnerable Nagios
code.

For more information:
SA32543
SA32610
SA32909

The vulnerabilities are reported in HP Insight Control suite For
Linux version 2.10. Prior versions may also be affected.

SOLUTION:
Apply patch kit ICE-LX V2.10.01
(HP_ICE_LX_V2.10.01_patch_kit_511708_003.iso)
https://h20392.www2.hp.com/portal/swdepot/try.do?productNumber=HPICELX

ORIGINAL ADVISORY:
HPSBMA02419 SSRT090060:
http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01712457

OTHER REFERENCES:
SA32543:
http://secunia.com/advisories/32543/

SA32610:
http://secunia.com/advisories/32610/

SA32909:
http://secunia.com/advisories/32909/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------