Vulnerabilities > CVE-2014-2630 - Unspecified vulnerability in HP Operations Agent 11.0

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
hp
exploit available
metasploit
NVD
Published: 2014-08-12
Updated: 2024-11-21

Summary

Unspecified vulnerability in HP Operations Agent 11.00, when Glance is used, allows local users to gain privileges via unknown vectors.

Vulnerable Configurations

Part Description Count
Application
Hp
1

Exploit-Db

idEDB-ID:48000
last seen2020-02-05
modified2020-02-05
published2020-02-05
reporterExploit-DB
sourcehttps://www.exploit-db.com/download/48000
titlexglance-bin 11.00 - Privilege Escalation

Metasploit

descriptionThis exploit takes advantage of xglance-bin, part of HP's Glance (or Performance Monitoring) version 11 'and subsequent' , which was compiled with an insecure RPATH option. The RPATH includes a relative path to -L/lib64/ which can be controlled by a user. Creating libraries in this location will result in an escalation of privileges to root.
idMSF:EXPLOIT/LINUX/LOCAL/HP_XGLANCE_PRIV_ESC
last seen2020-06-14
modified2020-04-30
published2020-04-19
references
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/linux/local/hp_xglance_priv_esc.rb
titleHP Performance Monitoring xglance Priv Esc

Packetstorm

References