COMMAND

    sam_exec

SYSTEMS AFFECTED

    HP 9.X, 10.X

PROBLEM

    The sam_exec password is "x7vpa5jh".  I sniffed the thing, and  it
    doesn't look like the  password is used at  all during any of  the
    transactions  --  a  .rhosts  file  gets installed in the sam_exec
    home dir, and  r* methods are  used.  The  password does exist  in
    the clear, though,  in the same  place it's always  been.  strings
    through  the  shared  library  and  it'll  be right after the word
    'None'; 9.x  you'll see  'None' and  then 'Yosemite'  on the  next
    line,  10.x  you'll  see  'None'  and  then 'x7vpa5jh' on the next
    line.      (The   remote    access    shared   library    is    at
    /usr/sam/lib/ra/ra.sl,  and  it  looks  to  be  world  readable by
    default.)