:A vulnerability has been reported in HP StorageWorks Command View Advanced Edition for XP, which potentially can be exploited by malicious, local users to gain access to other users’ accounts.The vulnerability is caused due to an unspecified error within the new user registration or addition process. No further information is available.The vulnerability reportedly affects the following products and versions:* HP StorageWorks Command View Advanced Edition for XP v 5.0.0-00 to v 5.1.0-05 and v 5.5.0-00 to v 5.5.0-02 * HP StorageWorks XP Replication Monitor v 1.1.0-00 and v 5.0.0-00 to v 5.5.0-02* HP StorageWorks XP Tiered Storage Manager v 1.1.0-00 and v 5.0.0-00 to v 5.5.0-01when at least one of the following Lines/Models is installed on a single server:* HP StorageWorks Command View Device Manager* HP StorageWorks Command View Global Link Availability Manager* HP StorageWorks Command View Replication Monitor* HP StorageWorks Command View Tiered Storage Manager* HP StorageWorks Command View Tuning ManagerSolution:Apply updates.http://welcome.hp.com/country/us/en/support.html?pageDisplay=drivers HP StorageWorks Command View Advanced Edition for XP:* Install v 5.6.0-01 or subsequentHP StorageWorks XP Replication Monitor:* Install v 5.6.0-01 or subsequentHP StorageWorks XP Tiered Storage Manager:* Install v 5.5.0-02 or subsequentProvided and/or discovered by:Reported by the vendor.Original Advisory:HPSBST02200 SSRT071330:http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBST02200

Original post by manisha