Computer Security Incident Response Team of Mauritius - CERT-MU Vulnerability Note VN-2017-21

Vulnerability in multiple HP Products

Severity Rating: High

System Affected:

HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS version 12.5 and prior

Description:

A vulnerability was identified in HPE StoreVirtual Storage. Multiple HP Products are prone to an unspecified remote code-execution vulnerability.

Successfully exploitation of this vulnerability will allow a remote authenticated user on the local network to send specially crafted data to execute arbitrary commands on the target system. Moreover, failed exploits will also result in denial-of-service conditions.

Source:

Solution

Users are advised to apply updates.

https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05382958

Vendor Information

http://www8.hp.com/emea_africa/en/home.html

CVE Information

CVE-2016-8529

References

Security Focus

http://www.securityfocus.com/bid/95970/info

Security Tracker

http://securitytracker.com/id/1037762

Contact Information

E-mail: contact@cert.ncb.mu

Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis

Top Link Bar

CERT-MU Vulnerability Note VN-2017-21

Subscribe to newsletter