H-P Shipped Infected Compact Flash Cards

[Corrine]

Potential Security Impact: Local compromise of system integrity

Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY

A potential security vulnerability has been identified with certain HP ProCurve 5400 zl switches containing compact flash cards which may be infected with a virus. Reuse of an infected compact flash card in a personal computer could result in a compromise of that system's integrity.

References: CVE-2012-0133

The impacted versions are only the HP 5400 zl series models and serial numbers purchased after April 30, 2011, as documented by the HP Business Support Center at HPSBPV02754 SSRT100803 rev.1 - HP ProCurve 5400 zl Switch, Compact flash card virus - c03249176.

See the referenced link for resolution procedures.