HP Software Distributor Lets Local Users Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1024367 |
|
SecurityTracker URL: http://securitytracker.com/id/1024367
|
|
CVE Reference:
CVE-2010-2712
(Links to External Site)
|
Date: Aug 26 2010
|
Impact:
Root access via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
|
Description:
A vulnerability was reported in Software Distributor. A local user can obtain elevated privileges on the target system.
A local user can gain root privileges.
|
Impact:
A local user can obtain root privileges on the target system.
|
Solution:
The vendor has issued a fix.
HP-UX B.11.11 (11i v1) PHCO_41200
HP-UX B.11.23 (11i v2) PHCO_41201
HP-UX B.11.31 (11i v3) PHCO_41202
The vendor's advisory is available at:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02285980
|
Vendor URL: h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02285980 (Links to External Site)
|
Cause:
Not specified
|
Underlying OS:
UNIX (HP/UX)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Thu, 26 Aug 2010 04:40:25 +0000
Subject: HPSBUX02552 SSRT100062 rev.1 - HP-UX running Software Distributor (sd), Local Privilege Increase, Unauthorized Access
|
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02285980
CVE-2010-2712
|
|
