HP-UX Vue three.0 permits neighborhood user to obtain root privileges hp-vue (2284) Higher Chance
Description:
A vulnerability in Vue in HP-UX programs could enable a local attacker to realize superuser privileges.
Consequences:
Gain Privileges
Remedy:
This situation was resolved by two sets of patches from two various Hewlett-Packard Security Bulletins:
HPSBUX9404-008: Utilize patch PHSS_4055 for HP9000 Sequence 300/400 or patch PHSS_4038 for HP9000 Sequence 700/800. See References. HPSBUX9504-027. Utilize patch PHSS_4055 for HP9000 Series 300/400 or patch PHSS_4066 for HP9000 Series 700/800. See References.
References:
CIAC Information Bulletin E-23b: Vulnerability in HP-UX programs with HP Vue three.0. Hewlett-Packard Business Security Bulletin HPSBUX9404-008: Security Vulnerability in Vue 3.0. Hewlett-Packard Company Safety Bulletin HPSBUX9504-027: Protection Vulnerability in HP VUE3.0. (From SecurityFocus archive.) CVE-1999-1134: Vulnerability in Vue 3.0 in HP nine.x makes it possible for regional end users to gain root privileges,
Office 2010 Download, as fixed by PHSS_4038,
Office Enterprise 2007, PHSS_4055,
Windows 7 Professional, and PHSS_4066. CVE-1999-1135: Vulnerability in VUE 3.0 in HP 9.x permits nearby end users to realize root privileges,
Microsoft Office 2010 Product Key, as fixed by PHSS_4994 and PHSS_5438.
Platforms Impacted:
HP HP-UX 9.00 HP HP-UX 9.01 HP HP-UX 9.03 HP HP-UX nine.04 HP HP-UX nine.05 HP HP-UX nine.06 HP HP-UX 9.07 HP HP-UX nine.08 HP HP-UX 9.09 HP HP-UX 9.ten
Reported:
Apr twenty, 1994
The information in this database may possibly alter with out recognize. Utilization of this information constitutes acceptance for use in an AS IS situation. There aren't any warranties, implied or otherwise,
Office 2010 Professional, with regard to this details or its use. Any use of this details is in the user's threat. In no function shall the author/distributor (IBM Net Protection Techniques X-Force) be held liable for just about any damages whatsoever arising from or in connection using the use or distribute of this details.
For corrections or additions make sure you electronic mail xforce@iss.net
Return for the primary page