Vulnerabilities > CVE-2000-1127 - Local Arbitrary File Read vulnerability in HP Hp-Ux 10.20

CVSS 3.6 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

exploit available

NVD

Published: 2001-01-09

Updated: 2008-09-05

Summary

registrar in the HP resource monitor service allows local users to read and modify arbitrary files by renaming the original registrar.log log file and creating a symbolic link to the target file, to which registrar appends log information and sets the permissions to be world readable.

Vulnerable Configurations

Part	Description	Count
OS	Hp HP HP UX 10.20	1

Exploit-Db

description	HP-UX 10.20 registrar Local Arbitrary File Read Vulnerability. CVE-2000-1127. Local exploit for hp-ux platform
id	EDB-ID:20386
last seen	2016-02-02
modified	2000-11-08
published	2000-11-08
reporter	J.A. Gutierrez
source	https://www.exploit-db.com/download/20386/
title	HP-UX 10.20 registrar Local Arbitrary File Read Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References