CVE-2003-1358
First published: Wed Dec 31 2003(Updated: )
rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP HP-UX | =10.30 | |
| HP HP-UX | =11.11 | |
| HP HP-UX | =10.01 | |
| HP HP-UX | =10.00 | |
| HP HP-UX | =10.26 | |
| HP HP-UX | =11.04 | |
| HP HP-UX | =10.34 | |
| HP HP-UX | =11.00 | |
| HP HP-UX | =11.0.4 | |
| HP HP-UX | =10.16 | |
| HP HP-UX | =10.20 | |
| HP HP-UX | =10.09 | |
| HP HP-UX | =10.10 | |
| HP HP-UX | =10.24 | |
| HP HP-UX | =11.20 | |
| HP HP-UX | =11.22 | |
| HP HP-UX | =10.08 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/hp
- canonical/hp hp-ux
- version/hp hp-ux/10.30
- version/hp hp-ux/11.11
- version/hp hp-ux/10.01
- version/hp hp-ux/10.00
- version/hp hp-ux/10.26
- version/hp hp-ux/11.04
- version/hp hp-ux/10.34
- version/hp hp-ux/11.00
- version/hp hp-ux/11.0.4
- version/hp hp-ux/10.16
- version/hp hp-ux/10.20
- version/hp hp-ux/10.09
- version/hp hp-ux/10.10
- version/hp hp-ux/10.24
- version/hp hp-ux/11.20
- version/hp hp-ux/11.22
- version/hp hp-ux/10.08