HP-UX Usermod Local Unauthorized Access Vulnerability
BID:17143
Info
HP-UX Usermod Local Unauthorized Access Vulnerability
| Bugtraq ID: | 17143 |
| Class: | Access Validation Error |
| CVE: |
CVE-2006-1248 |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 17 2006 12:00AM |
| Updated: | Jun 27 2007 08:28PM |
| Credit: | Reported by the vendor. |
| Vulnerable: |
HP HP-UX B.11.23 HP HP-UX B.11.11 HP HP-UX B.11.00 |
| Not Vulnerable: | |
Discussion
HP-UX Usermod Local Unauthorized Access Vulnerability
HP-UX usermod(1M) is prone to a local unauthorized-access vulnerability.
This may facilitate various attacks including information disclosure and potential code execution leading to privilege escalation.
HP-UX B.11.00, B.11.11, and B.11.23 are vulnerable.
HP-UX usermod(1M) is prone to a local unauthorized-access vulnerability.
This may facilitate various attacks including information disclosure and potential code execution leading to privilege escalation.
HP-UX B.11.00, B.11.11, and B.11.23 are vulnerable.
Exploit / POC
HP-UX Usermod Local Unauthorized Access Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Solution / Fix
HP-UX Usermod Local Unauthorized Access Vulnerability
Solution:
HP has released advisory HPSBUX02102 (SSRT051078 rev.1 - HP-UX usermod(1M) Local Unauthorized Access) to address this issue. Please see the references for more information.
Solution:
HP has released advisory HPSBUX02102 (SSRT051078 rev.1 - HP-UX usermod(1M) Local Unauthorized Access) to address this issue. Please see the references for more information.