HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 57 guests and 1 member online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Otherarrow Symantec VERITAS vulnerability in HP/UNIX 11.23
EH-Net
May 22, 2013, 01:51:20 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Symantec VERITAS vulnerability in HP/UNIX 11.23  (Read 2897 times)
0 Members and 1 Guest are viewing this topic.
Hack_80
Jr. Member
**
Offline Offline

Posts: 86


Black buck


View Profile
« on: June 07, 2012, 05:50:06 AM »
vulnerabilities reported in HP/UNIX 11.23 for “Symantec VERITAS Enterprise Administrator Service (vxsvc) Multiple Integer Overflows”
Though applying required patch “PHCO_42173” Nessus scanner is reporting same vulnerability for the server again
Kindly let me know if any had faced such issues...
Logged
ajohnson
Recruiters
Hero Member
*
Offline Offline

Posts: 1057


aka dynamik


View Profile WWW
« Reply #1 on: June 07, 2012, 09:11:43 PM »
Try and determine what the signature is actually checking and see if the patch would have any impact on that.
Logged
WIP: GCFA | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
MaXe
Hero Member
*****
Offline Offline

Posts: 669


I've just upgraded myself to a cyborg muahahaa!!1


View Profile WWW
« Reply #2 on: June 08, 2012, 06:43:19 AM »
The Nessus plugin may not be updated to being able to identify whether the service is patched or not, in case e.g. version numbers / banners didn't change, etc.

But as ajohnson said, try to determine what Nessus specifically does to identify if the patch is installed or not  Smiley
Logged
I'm an InterN0T'er
Hack_80
Jr. Member
**
Offline Offline

Posts: 86


Black buck


View Profile
« Reply #3 on: June 08, 2012, 03:07:30 PM »
Any way.. to check what nessus is doing to detect such vulnerability ?Also I am  only resposible for mitigations,Scanning is done by Separate team. How in technical terms i need to investigate the case or what question i need to do o the scanner team. should i ask for any logs....?
Logged
3xban
Hero Member
*****
Offline Offline

Posts: 608


View Profile WWW
« Reply #4 on: June 09, 2012, 11:03:04 AM »
you can ask for the full dump of the nessus report.  I have a similar problem where scans are run but are uploaded to a reporting system which gives me a whopping 1 line item per vulnerability found and a link to the CVE but not what exactly was found or what triggered it.

When it doubt see if you can run your own scans.  I don't always take the word of the people doing our scans.  Mostly since they are just using the default safe scan plugins.  Not even doing authentication based scans.  So it is all just best guess.
Logged
Certs: GCWN
(@)Dewser
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.138 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.