- 28 May 2008Advisories » HP-UX LDAP-UX Unspecified Local Privilege Escalation Vulnerability
| Release Date: | 08/05/2008 | Severity: | Less Critical  |
| SecWatch Advisory: | SWID1021130 | Cause: | Not specified |
| Solution Status: | Vendor Patch | Impact: | Privilege escalation |
| Exploit Status: | None Available | Access Vector: | From local system |
| Affected OS's: | HP-UX 11.x | ||
| Original Advisory: | http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID.. |
||
| References: | FrSIRT/ADV-2008-1450 |
||
| CVE: | CVE-2008-1659 | ||
| Secunia: | SA30132 | ||
| Bugtraq ID: | BID#29078 | ||
Description:
A vulnerability in HP-UX has been reported, which can be exploited by local users to gain escalated privileges.
An unspecified error exists in LDAP-UX, which can be exploited to gain unauthorised access.
Affected:
HP-UX B.11.11, B.11.23, and B.11.31 running LDAP-UX vB.04.10 to vB.04.15.
Solution:
The vulnerability has been fixed, apply LDAP-UX vB.04.17 or subsequent:
http://www.hp.com/go/softwaredepot
Credits:
Reported by vendor.
Free Vulnerability Notification Service
Receive free instant and customisable notifications of new vulnerabilities or exploits via e-mail, web or RSS feeds. Click here for more information.
Related Vulnerabilities and Exploits
03 Oct 06: HP-UX Ignite-UX Server Unspecified Remote Command Execution Vulne..
23 May 06: HP-UX Motif Applications libXpm Image Decoding Vulnerabilities
14 May 08: HP-UX ftp Server Unspecified Remote Denial of Service Vulnerabili..
30 Apr 08: HP-UX WBEM Services OpenPegasus PAM Module Remote Buffer Overflow..
12 Mar 08: HP-UX HP CIFS Server Multiple Remote Code Execution Vulnerabiliti..