Last year we had auditors come in and perform a security evaluation of our systems. I have had trouble finding information on items that are being flagged. For example, the original report lists CAN-year-####. These are Cert Advisory numbers. I could not find some of the ones they listed on the Cert website so I requested more information on where they got these numbers from. They replied back with CVE-year-####. This is Common Vulnerabilities and Exposures. I am still having problems finding Tru64 Unix specific information at both of these sites. The one thing I need is the vendor response, this will usually give you the fix or tell you if it is not a big deal. I can find Solaris, and HP-UX etc, but Tru64 information seems to be limited.
Has anyone out there had to do this? Maybe you have an easily searchable website that actually has Compaq (HP) information on security vulnernabilites searchable by CAN or CVE numbers?
Thanks for any help.
Received on Tue Feb 04 2003 - 15:07:22 NZDT