Public Safety Canada
Symbol of the Government of Canada
Skip to content | Skip to institutional links

Common menu bar links | Liens de navigation communs

Skip Navigation Links Home > Programs > Response > CCIRC > Analytical releases 2010 > AV10-028: Multiple Vulnerabilities in HP ProCurve

Institutional links

Multiple Vulnerabilities in HP ProCurve

Number: AV10-028
Date: 6 August 2010

Purpose

The purpose of this advisory is to raise awareness of multiple vulnerabilities in HP ProCurve Switches 1800, 2610, 2650 and 2626.

Assessment

Multiple vulnerabilities have been found in several versions of HP ProCurve switches. Various methods of exploitation include a remote user sending a specially crafted data via DHCP or a specially crafted request via SNMP. A remote user could also exploit an unspecified flaw in the In-band Agent. These vulnerabilities could result in a remote user gaining access to the target system, causing the target service to crash, causing a denial of service (DoS) or obtaining potentially sensitive information. These vulnerabilities have a CVSS rating of medium to high.

CVE References: CVE-2010-2707, CVE-2010-2708, CVE-2010-2706, CVE-2010-2705

HP References: HP PR#15972, 11503, 18756, 3791

Updates for switches can be found here:
http://www.procurve.com/customercare/support/software/switches.htm

Affected Products

  • HP ProCurve Switch 1800-24G (J9028A/B) Software Releases PB.03.02 or earlier
  • HP ProCurve Switch 1800-8G (J9029A) Software Releases PA.03.02 or earlier

*Versions prior to R.11.22 on the following models are affected:

  • ProCurve Switch 2610-24 (J9085A)
  • ProCurve Switch 2610-48 (J9088A)
  • ProCurve Switch 2610-24/12PWR (J9086A)
  • ProCurve Switch 2610-24-PWR (J9087A)
  • ProCurve Switch 2610-48-PWR (J9089A)

*Versions prior to R.11.30 on the following devices are affected:

  • ProCurve Switch 2610-24 (J9085A)
  • ProCurve Switch 2610-48 (J9088A)
  • ProCurve Switch 2610-24/12PWR (J9086A)
  • ProCurve Switch 2610-24-PWR (J9087A)
  • ProCurve Switch 2610-48-PWR (J9089A)

*Versions prior to H.10.80 on the following models are affected:

  • ProCurve Switch 2650-PWR (J8165A)
  • ProCurve Switch 2650 (J4899A, J4899B, J4899C)
  • ProCurve Switch 2626-PWR (J8164A)
  • ProCurve Switch 2626 (J4900A, J4900B, J4900C)

References
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436047
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436045
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436043
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02436028

Suggested action

CCIRC recommends that organizations liaise with the administrators/maintainers of the affected products to assess exposure and apply vendor-recommended updates and/or workarounds as appropriate.

Note to Readers

The Canadian Cyber Incident Response Centre (CCIRC) provides a focal point for Canada's cyber threat and vulnerability warning, analysis and response. CCIRC is responsible for assuring the resilience of national critical infrastructure through monitoring threats and coordinating a federal response to cyber security incidents of national interest. CCIRC operates in conjunction with the Government Operations Centre (GOC) within Public Safety Canada and is a key component of the government's all-hazards approach to emergency management and national security.

For general information, please contact Public Safety Canada's Public Affairs division at:

Telephone: 613-944-4875 or 1-800-830-3118
Fax: 613-998-9589
E-mail: communications@ps-sp.gc.ca

Date Modified: 2010-08-06
Top of Page
Top of Page
Important Notices