Lucene search

[email protected]CVE-2001-1509

HistoryDec 31, 2001 - 5:00 a.m.

CVE-2001-1509

2001-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

itanium architecture

hp-ux 11.20

cve-2001-1509

geteuid

user id

privilege escalation

7.3 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

geteuid in Itanium Architecture (IA) running on HP-UX 11.20 does not properly identify a user’s effective user id, which could allow local users to gain privileges.

CPENameOperatorVersion
hp:hp-uxhp hp-uxeq11.20

CPE	Name	Operator	Version
hp:hp-ux	hp hp-ux	eq	11.20

References

hp.cso.uiuc.edu/ftp/pub/hp/patches/11.20/PHSS_25454

www.iss.net/security_center/static/7324.php

www.securityfocus.com/advisories/3606

www.securityfocus.com/bid/3452

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5364

7.3 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON