Executive Summary

Summary
Title HP-UX Dynamic Loader, Local Privilege Escalation, Denial of Service (DoS)
Informations
Name HPSBUX02688 SSRT100513 First vendor Publication 2011-07-05
Vendor HP Last vendor Modification 2011-07-05
Severity (Vendor) N/A Revision 1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:S/C:C/I:C/A:C)
Cvss Base Score 6.8 Attack Range Local
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 3.1 Authentication Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

A potential security vulnerability has been identified in HP-UX dynamic loader. The vulnerability could be exploited locally to create a privilege escalation, or a Denial of Service (DoS).

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02904002

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:12615
 
Oval ID: oval:org.mitre.oval:def:12615
Title: HP-UX Dynamic Loader, Local Privilege Escalation, Denial of Service (DoS)
Description: Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors.
Family: unix Class: vulnerability
Reference(s): CVE-2011-2398
Version: 12
Platform(s): HP-UX 11
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Os 3

Open Source Vulnerability Database (OSVDB)

Id Description
73616 HP-UX Dynamic Loader Unspecified Local Privilege Escalation

Information Assurance Vulnerability Management (IAVM)

Date Description
2011-07-14 IAVM : 2011-B-0079 - HP-UX Privilege Escalation Vulnerability
Severity : Category II - VMSKEY : V0029389

Nessus® Vulnerability Scanner

Date Description
2012-03-06 Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_42040.nasl - Type : ACT_GATHER_INFO
2012-03-06 Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_42043.nasl - Type : ACT_GATHER_INFO
2012-03-06 Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_42253.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
Date Informations
2014-02-17 11:38:36
  • Multiple Updates
2013-11-11 12:41:03
  • Multiple Updates