HP on Tuesday issued several advisories warning of critical flaws in its System Management Homepage (SMH) for Linux, HP-Unix and Windows and certain systems running IP Filter packet filtering technology.
In its advisory to customers, HP said the SMH vulnerabilities could be exploited to allow a cross-site scripting attack. SMH versions prior to v2.1.10 running on Linux and Windows are affected, as well as SMH running on HP-UX versions B.11.11, B.11.23, and B.11.31.
An update has also been released by HP to repair a security vulnerability with HP-UX running IPFilter in combination with PHNE_34474. HP said the vulnerability could be remotely exploited to by an attacker create a denial of service attack and crash a system.