Vulnerabilities > CVE-2011-4159 - Unspecified vulnerability in HP Event Monitoring Service A.04.20.11.04

CVSS 6.8 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

NVD

Published: 2011-11-19

Updated: 2017-09-19

Summary

Unspecified vulnerability in System Administration Manager (SAM) in EMS before A.04.20.11.04_01 on HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.

Vulnerable Configurations

Part	Description	Count
Application	Hp HP Event Monitoring Service A.04.20.11.04	2
OS	Hp HP HP UX B.11.11 HP HP UX B.11.23 HP HP UX B.11.31	3

Oval

accepted

2015-04-20T04:00:37.995-04:00

class

vulnerability

contributors

name Yamini Mohan R
organization Hewlett-Packard
name Sushant Kumar Singh
organization Hewlett-Packard
name Sushant Kumar Singh
organization Hewlett-Packard
name Prashant Kumar
organization Hewlett-Packard
name Mike Cokus
organization The MITRE Corporation

description

Unspecified vulnerability in System Administration Manager (SAM) in EMS before A.04.20.11.04_01 on HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.

family

unix

oval:org.mitre.oval:def:14353

status

accepted

submitted

2012-01-30T11:43:07.000-05:00

title

HP-UX Running System Administration Manager (SAM), Local Increase in Privilege

version

Seebug

bulletinFamily	exploit
description	Bugtraq ID: 50704 CVE ID：CVE-2011-4159 HP-UX是一款商业性质的操作系统。 HP-UX系统管理器(SAM)存在未明错误，本地攻击者可以利用漏洞提升特权。 HP HP-UX B.11.31 HP HP-UX B.11.23 HP HP-UX B.11.11 厂商解决方案用户可参考如下供应商提供的安全公告获得补丁信息： http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03089106
id	SSV:23219
last seen	2017-11-19
modified	2011-11-18
published	2011-11-18
reporter	Root
title	HP-UX系统管理器本地特权提升漏洞

Summary

Vulnerable Configurations

Oval

Seebug

References