Vulnerabilities > CVE-2000-0005 - Unspecified vulnerability in HP 9000, Aserver and Hp-Ux

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
hp

Summary

HP-UX aserver program allows local users to gain privileges via a symlink attack.

Oval

accepted2008-08-25T04:00:23.491-04:00
classvulnerability
contributors
nameMichael Wood
organizationHewlett-Packard
descriptionHP-UX aserver program allows local users to gain privileges via a symlink attack.
familyunix
idoval:org.mitre.oval:def:5635
statusaccepted
submitted2008-07-11T14:41:52.000-04:00
title/opt/audio/bin/Aserver can be used to gain root access.
version35