Vulnerabilities > CVE-2007-3260 - Remote Privilege Escalation vulnerability in HP System Management Homepage
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
HP System Management Homepage (SMH) before 2.1.9 for Linux, when used with Novell eDirectory, assigns the eDirectory members to the root group, which allows remote authenticated eDirectory users to gain privileges.
Vulnerable Configurations
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01072894
- http://osvdb.org/37513
- http://secunia.com/advisories/25689
- http://www.securityfocus.com/bid/24486
- http://www.securitytracker.com/id?1018256
- http://www.vupen.com/english/advisories/2007/2232
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34900