Vulnerabilities > CVE-2000-0005 - Unspecified vulnerability in HP 9000, Aserver and Hp-Ux

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

NVD

Published: 1999-01-02

Updated: 2018-05-03

Summary

HP-UX aserver program allows local users to gain privileges via a symlink attack.

Part	Description	Count
OS	Hp HP HP UX 7.00 HP HP UX 7.02 HP HP UX 7.04 HP HP UX 7.06 HP HP UX 7.08 HP HP UX 8.00 HP HP UX 8.01 HP HP UX 8.02 HP HP UX 8.04 HP HP UX 8.05 HP HP UX 8.06 HP HP UX 8.07 HP HP UX 8.08 HP HP UX 8.09 HP HP UX 9.00 HP HP UX 9.01 HP HP UX 9.03 HP HP UX 9.04 HP HP UX 9.05 HP HP UX 9.06 HP HP UX 9.07 HP HP UX 9.08 HP HP UX 9.09 HP HP UX 9.10 HP HP UX 10.00 HP HP UX 10.01 HP HP UX 10.08 HP HP UX 10.09 HP HP UX 10.10 HP HP UX 10.16 HP HP UX 10.20 HP HP UX 10.24 HP HP UX 10.30 HP HP UX 10.34 HP HP UX 11.00	35
Application	Hp HP Aserver *	1
Hardware	Hp HP 9000 7_800	1

accepted

2008-08-25T04:00:23.491-04:00

class

vulnerability

contributors

name	Michael Wood
organization	Hewlett-Packard

description

HP-UX aserver program allows local users to gain privileges via a symlink attack.

family

unix

oval:org.mitre.oval:def:5635

status

accepted

submitted

2008-07-11T14:41:52.000-04:00

title

/opt/audio/bin/Aserver can be used to gain root access.

version