Vulnerabilities > CVE-2000-1127 - Local Arbitrary File Read vulnerability in HP Hp-Ux 10.20
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
registrar in the HP resource monitor service allows local users to read and modify arbitrary files by renaming the original registrar.log log file and creating a symbolic link to the target file, to which registrar appends log information and sets the permissions to be world readable.
Exploit-Db
description | HP-UX 10.20 registrar Local Arbitrary File Read Vulnerability. CVE-2000-1127. Local exploit for hp-ux platform |
id | EDB-ID:20386 |
last seen | 2016-02-02 |
modified | 2000-11-08 |
published | 2000-11-08 |
reporter | J.A. Gutierrez |
source | https://www.exploit-db.com/download/20386/ |
title | HP-UX 10.20 registrar Local Arbitrary File Read Vulnerability |