Vulnerabilities > CVE-2011-3164 - Local Privilege Escalation vulnerability in HP Hp-Ux Containers A.03.00/A.03.00.002/A.03.01

047910
CVSS 6.8 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
hp
NVD
Published: 2011-11-04
Updated: 2017-09-19

Summary

Unspecified vulnerability in HP-UX Containers (formerly HP-UX Secure Resource Partitions (SRP)) A.03.00, A.03.00.002, and A.03.01, when running with patch PHKL_42310, allows local users to gain privileges via unknown vectors. Per: http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03057703&ac.admitted=1320691067232.876444892.492883150 Upgrade to HP-UX Containers A.03.01.001

Vulnerable Configurations

Part Description Count
Application
Hp
3

Oval

accepted2015-04-20T04:00:38.428-04:00
classvulnerability
contributors
  • nameYamini Mohan R
    organizationHewlett-Packard
  • namePrashant Kumar
    organizationHewlett-Packard
  • nameMike Cokus
    organizationThe MITRE Corporation
descriptionUnspecified vulnerability in HP-UX Containers (formerly HP-UX Secure Resource Partitions (SRP)) A.03.00, A.03.00.002, and A.03.01, when running with patch PHKL_42310, allows local users to gain privileges via unknown vectors.
familyunix
idoval:org.mitre.oval:def:14429
statusaccepted
submitted2012-01-30T11:51:12.000-05:00
titleHP-UX Containers (SRP), Local Unauthorized Access and Increased Privileges
version44

Seebug

bulletinFamilyexploit
descriptionBugtraq ID: 50396 CVE ID:CVE-2011-3164 HP-UX是一款商业性质的UNIX操作系统。 HP-UX Containers (SRP)存在安全问题,恶意本地用户利用漏洞获得未授权访问并提升特权。 要成功利用漏洞需要安装了PHKL_42310补丁 HP HP-UX Containers A.03.01 HP HP-UX Containers A.03.00.002 HP HP-UX Containers A.03.00 厂商解决方案 HP HP-UX Containers A.03.01.001已经修复此漏洞,建议用户下载使用: http://www.hp.com/
idSSV:23146
last seen2017-11-19
modified2011-10-28
published2011-10-28
reporterRoot
titleHP-UX Containers未明特权提升漏洞

References