HP-UX Vue 3.0 allows regional person to get root privileges hp-vue (2284) High Threat ,
Office 2007 Product Key
Description:
A vulnerability in Vue in HP-UX programs could permit a nearby attacker to realize superuser privileges.
Consequences:
Gain Privileges
Remedy:
This problem was resolved by two sets of patches from two diverse Hewlett-Packard Security Bulletins:
HPSBUX9404-008: Use patch PHSS_4055 for HP9000 Series 300/400 or patch PHSS_4038 for HP9000 Sequence 700/800. See References. HPSBUX9504-027. Apply patch PHSS_4055 for HP9000 Series 300/400 or patch PHSS_4066 for HP9000 Series 700/800. See References.
References:
CIAC Details Bulletin E-23b: Vulnerability in HP-UX techniques with HP Vue 3.0. Hewlett-Packard Business Protection Bulletin HPSBUX9404-008: Security Vulnerability in Vue three.0. Hewlett-Packard Organization Safety Bulletin HPSBUX9504-027: Protection Vulnerability in HP VUE3.0. (From SecurityFocus archive.) CVE-1999-1134: Vulnerability in Vue three.0 in HP 9.x enables neighborhood end users to gain root privileges,
Windows 7 Professional Product Key, as fixed by PHSS_4038,
Office Standard 2007 Key, PHSS_4055, and PHSS_4066. CVE-1999-1135: Vulnerability in VUE three.0 in HP nine.x permits nearby users to realize root privileges, as fixed by PHSS_4994 and PHSS_5438.
Platforms Affected:
HP HP-UX 9.00 HP HP-UX nine.01 HP HP-UX 9.03 HP HP-UX 9.04 HP HP-UX 9.05 HP HP-UX nine.06 HP HP-UX 9.07 HP HP-UX 9.08 HP HP-UX nine.09 HP HP-UX 9.ten
Reported:
Apr 20,
Windows 7 Activation, 1994
The data inside this database may possibly alter with out observe. Utilization of this information constitutes acceptance for use in an AS IS problem. There aren't any warranties, implied or or else,
Office Professional, regarding this information or its use. Any utilization of this details is at the user's risk. In no function shall the author/distributor (IBM Web Safety Programs X-Force) be held liable for almost any damages whatsoever arising out of or in connection with all the use or distribute of this information.
For corrections or additions please electronic mail xforce@iss.net
Return for the main page