Executive Summary

Title HP-UX Running System Administration Manager (SAM), Local Increase in Privilege
Name HPSBUX02724 SSRT100650 First vendor Publication 2011-11-16
Vendor HP Last vendor Modification 2012-01-30
Severity (Vendor) N/A Revision 3

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:S/C:C/I:C/A:C)
Cvss Base Score 6.8 Attack Range Local
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 3.1 Authentication Requires single instance
Calculate full CVSS 2.0 Vectors scores


A potential security vulnerability has been identified with HP-UX running SAM. This vulnerability could be locally exploited to create an increase in privilege.

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03089106

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:14353
Oval ID: oval:org.mitre.oval:def:14353
Title: HP-UX Running System Administration Manager (SAM), Local Increase in Privilege
Description: Unspecified vulnerability in System Administration Manager (SAM) in EMS before A. on HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.
Family: unix Class: vulnerability
Reference(s): CVE-2011-4159
Version: 12
Platform(s): HP-UX 11
Definition Synopsis:

CPE : Common Platform Enumeration

Application 1

Open Source Vulnerability Database (OSVDB)

Id Description
77191 HP-UX System Administration Manager (SAM) Unspecified Local Privilege Escalation