Vulnerabilities > CVE-2001-1198 - Unspecified vulnerability in HP Hp-Ux

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

NVD

Published: 2001-12-15

Updated: 2017-10-11

Summary

RLPDaemon in HP-UX 10.20 and 11.0 allows local users to overwrite arbitrary files and gain privileges by specifying the target file in the -L option.

Vulnerable Configurations

Part	Description	Count
OS	Hp HP HP UX 10.01 HP HP UX 10.10 HP HP UX 10.20 HP HP UX 11.00 HP HP UX 11.11	5

Oval

accepted

2014-03-24T04:01:46.713-04:00

class

vulnerability

contributors

name Michael Wood
organization Hewlett-Packard
name Sushant Kumar Singh
organization Hewlett-Packard

description

RLPDaemon in HP-UX 10.20 and 11.0 allows local users to overwrite arbitrary files and gain privileges by specifying the target file in the -L option.

family

unix

oval:org.mitre.oval:def:5763

status

accepted

submitted

2008-07-10T16:22:36.000-04:00

title

An rlpdaemon logic flaw vulnerability has been reported to us that may allow a remote or local attacker to execute arbitrary code with superuser privilege.

version

Summary

Vulnerable Configurations

Oval

References