• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

HP OpenView Select Identity Connectors Local Information Disclosure Vulnerability

HP OpenView Select Identity Connectors are prone to a local information-disclosure vulnerability.

A local attacker can exploit this issue to obtain potentially sensitive information that may aid in further attacks.

The following OpenView Select Identity Connectors are affected:

HPSI Active Directory Connector v 1.70.003 and earlier
HPSI Active Directory Connector v 2.10.002 and earlier
HPSI Active Directory Connector v 2.20.xxx and v2.30.xxx and earlier
HPSI SunOne Connector v 1.14 and earlier
HPSI eDirectory Connector v 1.12 and earlier
HPSI eTrust Connector v 1.02 and earlier
HPSI OID Connector v 1.02 and earlier
HPSI IBM Tivoli Dir Connector v 1.02 and earlier
HPSI TOPSecret Connector v 2.22.001 and earlier
HPSI RACF Connector v 1.12.001 and earlier
HPSI ACF2 Connector v 1.02 and earlier
HPSI OpenLDAP Connector v 1.02 and earlier
HPSI BiDir DirX Connector v 1.00.003 and earlier