HP-UX SLSD Remote Arbitrary File Creation Vulnerability
BID:22551
Info
HP-UX SLSD Remote Arbitrary File Creation Vulnerability
| Bugtraq ID: | 22551 |
| Class: | Access Validation Error |
| CVE: |
CVE-2007-0915 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 13 2007 12:00AM |
| Updated: | May 12 2015 07:34PM |
| Credit: | HP credits the iDefense Vulnerability Contributor Program with the discovery of this issue. |
| Vulnerable: |
HP HP-UX B.11.11 |
| Not Vulnerable: | |
Discussion
HP-UX SLSD Remote Arbitrary File Creation Vulnerability
HP-UX running SLSd is prone to a remote arbitrary-file-creation vulnerability.
An attacker can exploit this issue to create arbitrary files on a vulnerable computer. A successful exploit could lead to the complete compromise of affected computers.
HP-UX running SLSd is prone to a remote arbitrary-file-creation vulnerability.
An attacker can exploit this issue to create arbitrary files on a vulnerable computer. A successful exploit could lead to the complete compromise of affected computers.
Exploit / POC
HP-UX SLSD Remote Arbitrary File Creation Vulnerability
An attacker can exploit this issue using readily available networking tools.
An attacker can exploit this issue using readily available networking tools.
Solution / Fix
HP-UX SLSD Remote Arbitrary File Creation Vulnerability
Solution:
Fixes have been released to address this issue. Please see the referenced advisory for more information.
Solution:
Fixes have been released to address this issue. Please see the referenced advisory for more information.
References
HP-UX SLSD Remote Arbitrary File Creation Vulnerability
References:
References: