HPE Community
Server Management - Systems Insight Manager
1753730 Members
4960 Online
108799 Solutions
New Discussion

Upgrade 5.3 to 6.0 because of security bulletin?

 
Post_ITS_Server_Team
Occasional Advisor

‎04-27-2010 11:56 PM

‎04-27-2010 11:56 PM

Upgrade 5.3 to 6.0 because of security bulletin?

Hello

We have two HP SIM 5.3 SP1 (with all hotfixes) Servers in two different domains. On one SIM we manage about 750 Servers on the other one about 4000 Servers(Because of Firewall and Security issues we couldn't make 50% 50%). We started a few weeks ago a project to build two new more performant HPSIM 6.0 Servers but because of the big organization and lot of project milestones we will have the new ones not before end of august 2010 up and running.

Today I got the HP Security Bulletin HPSBMA02525 SSRT100083 which describes Remote Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF) and Privilege Elevation!

My question is now: Should we upgrade the existing HP SIM Servers to 6.0? I'm afraid of that after the upgrade there will be problems or side effects and we cannot manage the ~5000 Servers anymore for a while...
What do you think about that?

Kind regards,
Ville
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.