• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

HP StorageWorks Command View XP Unspecified Access Restriction Bypass Vulnerability

It is reported that HP StorageWorks Command View XP contains an access restriction bypass vulnerability. Specific details were not provided.

Reportedly, local attackers using the Command View XP software can bypass access restrictions to perform actions not authorized to them. This vulnerability is reported to only affect local use of the software from the management station, and not from either the web interface, or the command line interface.

All versions up to, and including version 1.8B of Command View XP on management stations included in the following devices are reported to be affected by this vulnerability:
- StorageWorks Disk Array XP48
- StorageWorks Disk Array XP128
- Surestore Disk Array XP256
- StorageWorks Disk Array XP1024