First published: Tue Sep 18 2007(Updated: )
HP System Management Homepage (SMH) for Windows, when used in conjunction with HP Version Control Agent or Version Control Repository Manager, leaves old OpenSSL software active after an OpenSSL update, which has unknown impact and attack vectors, probably related to previous vulnerabilities for OpenSSL.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
HP System Management Homepage | =2.1.2 | |
HP System Management Homepage | =2.1.6 | |
HP System Management Homepage | =2.0.2 | |
HP System Management Homepage | =2.1.1 | |
HP System Management Homepage | =2.1.8 | |
HP System Management Homepage | =2.0.0 | |
HP System Management Homepage | =2.0.1 | |
HP System Management Homepage | =2.1.9 | |
HP System Management Homepage | =2.1.5 | |
HP System Management Homepage | =2.1.3 | |
HP System Management Homepage | =2.1.3.132 | |
HP System Management Homepage | =2.1.7 | |
HP System Management Homepage | =2.1 | |
HP System Management Homepage | =2.1.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2007-4931 has been classified with unknown severity due to its potential impacts and attack vectors related to old OpenSSL software being left active after updates.
To fix CVE-2007-4931, ensure that all versions of HP System Management Homepage are updated to the latest software that does not leave old OpenSSL versions active.
CVE-2007-4931 affects HP System Management Homepage versions 2.0.0 to 2.1.9.
CVE-2007-4931 specifically impacts HP System Management Homepage when used with HP Version Control Agent or Version Control Repository Manager.
The implications of CVE-2007-4931 include the possibility of exploiting vulnerabilities related to old OpenSSL software which may pose security risks.