COMMAND

    DESMS

SYSTEMS AFFECTED

    HP 9000 Series 7/800 Servers running HP-UX 10.20 and 11.00

PROBLEM

    Following  is  based  on  HP  Support Information Digests.  Domain
    Enterprise  Server  Management  System  (DESMS)  processes   allow
    increased privileges.  Users can gain increased privileges.

SOLUTION

    Apply the  patches listed  below.   If you  are using  one of  the
    products listed below, then install the applicable patch for  your
    revision of HP-UX:

        For HP-UX release 10.20:   PHNE_17948;
        For HP-UX release 11.00:   PHNE_18017 for product J1593AA only
        For HP-UX release 11.00:   PHNE_17949 for all  other  products
                                              listed below.

        Product   Description                        Affected Revision

        J1564DA   Netscape Calendar Server                       All
        J1592AA   HP Domain Service Control                      All
        J1593AA   A/R HP Domain Service Control Packaged Edition All
        J3633CA   Netscape/Informix US/Canada                    All
        J3638BA   HP Domain/Netscape Suitespot Pro               All
        J3641DA   Netscape Enterprise Server                     All
        J3651DA   Netscape Collabra Server                       All
        J3655DA   Netscape Message Server                        All
        J3667AA   Netscape Directory Server                      All
        J3675BA   HP Domain/Netscape SuiteSpot (S700)            All
        J3676BA   HP Domain/Netscape SuiteSpot (S800)            All
        J3678AA   Netscape Proxy Server                          All
        J4244AA   Domain Commerce Server                         All

    This  vulnerability  does  not  apply  to  any of the VirtualVault
    releases.