PT-2003-2406 · Hewlett Packard · Hp-Ux

Published

2003-12-31

Updated

2017-10-11

CVE-2003-1461

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions HP-UX version 11.0

Description A buffer overflow issue exists in the rwrite function, potentially allowing local users to execute arbitrary code by providing a long argument. The vendor was unable to reproduce the issue on a system patched for an lp vulnerability.

Recommendations For HP-UX version 11.0, apply the necessary patches to resolve the issue, specifically ensuring the system is updated to address the lp vulnerability, as this may also mitigate the rwrite buffer overflow issue.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2003-1461

Affected Products

Hp-Ux

PT-2003-2406 · Hewlett Packard · Hp-Ux

CVE-2003-1461

Weakness Enumeration

Related Identifiers

Affected Products

References · 8