Vulnerabilities > CVE-2005-3277 - Unspecified vulnerability in HP Hp-Ux 10.20/11.00/11.11
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The LPD service in HP-UX 10.20 11.11 (11i) and earlier allows remote attackers to execute arbitrary code via shell metacharacters ("`" or single backquote) in a request that is not properly handled when an error occurs, as demonstrated by killing the connection, a different vulnerability than CVE-2002-1473.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 3 |
Exploit-Db
| description | HP-UX <= 11.11 lpd Remote Command Execution Exploit (meta). CVE-2005-3277. Remote exploit for hp-ux platform |
| id | EDB-ID:1261 |
| last seen | 2016-01-31 |
| modified | 2005-10-19 |
| published | 2005-10-19 |
| reporter | H D Moore |
| source | https://www.exploit-db.com/download/1261/ |
| title | HP-UX <= 11.11 lpd Remote Command Execution Exploit meta |