oval:org.mitre.oval:def:648

Definition Id: oval:org.mitre.oval:def:648

Oval ID:	oval:org.mitre.oval:def:648
Title:	HP-UX wuftpd Privilege Escalation Vulnerability (B.11.23)
Description:	wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which causes wu-ftpd to use the root directory instead.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0148	Version:	5
Platform(s):	HP-UX 11	Product(s):	ftpd
Definition Synopsis:
700 Series or 800 Series OS Release 11.23 700 Series OS Release 11.23 700-series HP AND HP Release B.11.23 OR 800 Series OS Release 11.23 800-series HP AND HP Release B.11.23 AND InternetSrvcs.INETSVCS2-RUN is installed AND NOT Either PHNE_30983 or PHNE_31732 is installed Patch PHNE_30983 is installed AND Patch PHNE_31732 is installed