SOFTPAQ NUMBER : SP16261 
PART NUMBER: N/A 
FILE NAME: libcpqhmmo.so 
TITLE:   Compaq Management Agents Security Overflow Patch 1 
VERSION: 4.90b 
LANGUAGE: English 
 
CATEGORY: Software Solutions 
 
DIVISIONS: Systems 
 
PRODUCTS AFFECTED: Compaq Foundation Agents - NSC UnixWare 7 
 
OPERATING SYSTEM: Non-Stop Clusters for UnixWare (NSC) 7.1.1* 
 
SYSTEM CONFIGURATION:  N/A 
 
PREREQUISITES:  cmafdtn 
 
EFFECTIVE DATE: January 17, 2001 
 
ELECTRONIC DISTRIBUTION ALLOWED:  Yes 
 
SOFTPAQ UTILITY VERSION:  2.x 
 
SUPERSEDES:  N/A 
 
DESCRIPTION: This SoftPaq allows updating a file needed to fix a potential security issue 
in the web-enabled portion of the Compaq Management Agents for NSC UnixWare.  
There is a buffer overflow problem when a large value HTTP request is passed in the Compaq  
Management Agents. It could result in a modification of the host server's stack. Depending  
on how the stack was modified, the server could potentially abend. This affects the web  
component of the affected products for the following versions: 
 
  Compaq Foundation Agents - NSC UnixWare 7 version 4.80* to 4.90* 
 
HOW TO USE: 
 
Execute the DOS/Windows sp16261.exe file in a newly created directory. 
Copy the newly created file cmaesp.pkg from the DOS/Windows directory 
onto your NonStop Clusters system.  Have cmaesp.pkg in your current
directory and perform the following step: 
    
  1. pkgadd -d`pwd`/cmaesp.pkg 
  
This will restart the cmawebd daemon. No further action is required. 
 
HOW TO RESTORE YOUR ORIGINAL CONFIGURATION: 
 
To restore the original version of the patched file, perform the following step: 
  1. pkgrm cmaesp  
  
This will restart the cmawebd daemon. No further action is required. 
 
Copyright 2001, Compaq Computer Corporation.  All rights reserved. 
 
Product names mentioned herein may be trademarks and/or registered 
trademarks of their respective companies