Directory Access Vulnerability in HP Operations Agent and Performance Agent
CVE-2011-4160

Currently unrated

Key Information:

Vendor: HP
Status: Operations Agent; Performance Agent
Vendor: CVE Published:; 24 November 2011

What is CVE-2011-4160?

An unspecified vulnerability exists in HP Operations Agent version 11.00 and Performance Agent versions 4.73 and 5.0 that allows local users to bypass directory-access restrictions. This vulnerability affects multiple operating systems, including AIX, HP-UX, Linux, and Solaris, posing a potential risk for unauthorized access to sensitive directories and files. The exact method of exploitation is not clearly defined, making it crucial for organizations to assess their systems for potential exposure and implement appropriate security measures.

References

http://marc.info/?l=bugtraq&m=132198248000785&w=2

vendor-advisoryx_refsource_HP

http://marc.info/?l=bugtraq&m=132198248000785&w=2

vendor-advisoryx_refsource_HP

http://secunia.com/advisories/46971

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 24, 2011
Vulnerability Reserved
Oct 21, 2011