Vulnerabilities > CVE-2006-0436 - Unspecified vulnerability in HP Hp-Ux 11.00/11.11/11.4
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain privileges via unknown attack vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 3 |
Nessus
NASL family HP-UX Local Security Checks NASL id HPUX_PHCO_32280.NASL description s700_800 11.04 (VVOS) libpam, libpam_unix cumulative patch : The remote HP-UX host is affected by multiple vulnerabilities : - A potential security vulnerability has been identified with HP-UX systems where the vulnerability may be exploited to allow a local user to increase privilege. (HPSBUX02091 SSRT061099) - A potential vulnerability has been identified with the HP-UX newgrp(1) command that may allow authorized users to elevate privileges. (HPSBUX01102 SSRT4687) last seen 2020-06-01 modified 2020-06-02 plugin id 16962 published 2005-02-16 reporter This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/16962 title HP-UX PHCO_32280 : s700_800 11.04 (VVOS) libpam, libpam_unix cumulative patch NASL family HP-UX Local Security Checks NASL id HPUX_PHCO_29249.NASL description s700_800 11.00 libpam and libpam_unix cumulative patch : The remote HP-UX host is affected by multiple vulnerabilities : - A potential security vulnerability has been identified with HP-UX systems where the vulnerability may be exploited to allow a local user to increase privilege. (HPSBUX02091 SSRT061099) - A potential security vulnerability has been identified with HP-UX trusted systems where the vulnerability may be exploited to allow remote unauthorized access. (HPSBUX01165 SSRT5899) last seen 2020-06-01 modified 2020-06-02 plugin id 18394 published 2005-05-30 reporter This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/18394 title HP-UX PHCO_29249 : s700_800 11.00 libpam and libpam_unix cumulative patch NASL family HP-UX Local Security Checks NASL id HPUX_PHCO_30402.NASL description s700_800 11.11 libpam_unix cumulative patch : A potential security vulnerability has been identified with HP-UX systems where the vulnerability may be exploited to allow a local user to increase privilege. last seen 2020-06-01 modified 2020-06-02 plugin id 20830 published 2006-02-01 reporter This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/20830 title HP-UX PHCO_30402 : HP-UX Local Increased Privilege (HPSBUX02091 SSRT061099 rev.2)
Oval
accepted 2011-05-09T04:01:10.925-04:00 class vulnerability contributors name Robert L. Hollis organization ThreatGuard, Inc. name Todd Dolinsky organization Opsware, Inc. name Shane Shaffer organization G2, Inc.
description Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain privileges via unknown attack vectors. family unix id oval:org.mitre.oval:def:1453 status accepted submitted 2006-01-30T07:20:00.000-04:00 title HP-UX Shared Library Privilege Escalation Vulnerability (B.11.11) version 38 accepted 2011-05-09T04:01:14.689-04:00 class vulnerability contributors name Robert L. Hollis organization ThreatGuard, Inc. name Todd Dolinsky organization Opsware, Inc. name Shane Shaffer organization G2, Inc.
description Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain privileges via unknown attack vectors. family unix id oval:org.mitre.oval:def:1577 status accepted submitted 2006-01-30T07:20:00.000-04:00 title HP-UX Shared Library Privilege Escalation Vulnerability (B.11.00) version 38 accepted 2014-03-24T04:00:39.917-04:00 class vulnerability contributors name Robert L. Hollis organization ThreatGuard, Inc. name Todd Dolinsky organization Opsware, Inc. name Michael Wood organization Hewlett-Packard name Sushant Kumar Singh organization Hewlett-Packard
description Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 allows local users to gain privileges via unknown attack vectors. family unix id oval:org.mitre.oval:def:1586 status accepted submitted 2006-01-30T07:20:00.000-04:00 title HP-UX Local Increased Privilege version 41
References
- http://secunia.com/advisories/18596
- http://secunia.com/advisories/18600
- http://securitytracker.com/id?1015530
- http://support.avaya.com/elmodocs2/security/ASA-2006-025.htm
- http://www.vupen.com/english/advisories/2006/0322
- http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00591401
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24318
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1453
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1577
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1586