HP Tru64 DOP Command Local Privilege Escalation Vulnerability

Bugtraq ID:	23881
Class:	Design Error
CVE:	CVE-2007-2553
Remote:	No
Local:	Yes
Published:	May 08 2007 12:00AM
Updated:	May 07 2015 05:39PM
Credit:	Daniele Calore is credited with discovering this vulnerability
Vulnerable:	HP Tru64 UNIX 5.1.0 PK6 HP Tru64 UNIX 5.1.0 B-4 HP Tru64 UNIX 5.1.0 B-3
Not Vulnerable:

HP Tru64 DOP Command Local Privilege Escalation Vulnerability

HP Tru64 for UNIX is prone to a local privilege-escalation vulnerability.

Exploiting this issue allows local attackers to execute arbitrary code with superuser privileges.
Successful exploits will result in a complete compromise of vulnerable computers. Failed exploit attempts will result in a denial of service.

HP Tru64 DOP Command Local Privilege Escalation Vulnerability

The following exploit code is available.

• /data/vulnerabilities/exploits/23881.txt

HP Tru64 DOP Command Local Privilege Escalation Vulnerability

Solution:
HP has released an advisory along with fixes to address this issue. Please see the referenced advisory for information on obtaining and applying fixes.


HP Tru64 UNIX 5.1.0 PK6

• HP T64KIT1001190-V51AB24-ES-20070405
  http://www2.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT100 1190-V51AB24-ES-20070405

HP Tru64 UNIX 5.1.0 B-3

• HP T64KIT1001189-V51BB26-ES-20070405
  http://www2.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT100 1189-V51BB26-ES-20070405

HP Tru64 UNIX 5.1.0 B-4

• HP T64KIT1001188-V51BB27-ES-20070404
  http://www2.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT100 1188-V51BB27-ES-20070404

HP Tru64 DOP Command Local Privilege Escalation Vulnerability

References:

• HP Tru64 Home Page (HP)
  
• [[email protected]: Re: [security bulletin] HPSBTU02211 SSRT071326rev.1 - HP Tru ([email protected])
  
• [security bulletin] HPSBTU02211 SSRT071326 rev.1 - HP Tru64 UNIX Running the dop ([email protected])