PT-2003-1907 · Hewlett Packard · Hp-Ux

Davide Del Vecchio

Published

2003-10-09

Updated

2016-10-18

CVE-2003-0840

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions HP-UX version 11.00

Description A buffer overflow issue in the dtprintinfo function allows local users to gain root privileges by setting a long DISPLAY environment variable.

Recommendations For HP-UX version 11.00, update the system to prevent exploitation of this issue. As a temporary workaround, consider restricting the length of the DISPLAY environment variable to prevent buffer overflow.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0840

Affected Products

Hp-Ux

PT-2003-1907 · Hewlett Packard · Hp-Ux

CVE-2003-0840

Related Identifiers

Affected Products

References · 3