Title : HP System Management Homepage Unauthorized Access
Advisory ID : FrSIRT/ADV-2008-2999
CVE ID : CVE-2008-4413CWE ID : CWE-264Rated as : Low Risk 
Remotely Exploitable : No
Locally Exploitable : Yes
Release Date : 2008-11-04세부설명
==========HP System Management Homepage(SMH) for HP-UX 에서 로컬 공격자가 제한된 보안을 우회할 수 있는 취약점이 발견 되었다.
이 문제는 불특정한 문제 때문이며 인증없이 로컬에 접근이 가능하다.
해결책
==========Install HP System Management Homepage (SMH) version 2.2.9.1 or subsequent :
http://software.hp.com레퍼런스
==========http://www.frsirt.com/english/advisories/2008/2999
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01586921영향받는 버전
==========
HP System Management Homepage (SMH) version 2.2.6 and prior (HP-UX B.11.11 and B.11.23)
HP System Management Homepage (SMH) version 2.2.6 and prior (HP-UX B.11.23 and B.11.31)
HP System Management Homepage (SMH) version 2.2.8 and prior (HP-UX B.11.23 and B.11.31)
sH4
