CVE-2000-0078

Name of the Vulnerable Software and Affected Versions HP-UX aserver version June 1999

Description The issue allows local users to gain privileges by specifying an alternate PATH that aserver uses to find the awk command.

Recommendations For the June 1999 version of HP-UX aserver, consider restricting the ability of local users to specify alternate PATHs to prevent privilege escalation until a fix is available.