The NSAPI plugin versions of the TGA and Java Servlet proxy for HP VirtualVault contain a flaw that may allow a denial of service attack. The issue is triggered under certain conditions that have not been disclosed, and will result in loss of availability of services on the affected computer due to high CPU utilization.
Currently, there are no known workarounds or upgrades to correct this issue. However, HP has released a patch to address this vulnerability:
For HP-UX release 10.24 with VirtualVault A.03.50: apply patch PHSS_22187
For HP-UX release 11.04 with VirtualVault A.04.00: apply patch PHSS_22296