2 matches found
HP-UX PHNE_44295 : s700_800 11.31 s700_800 cumulative PPP patch
s700800 11.31 s700800 cumulative PPP patch : A potential security vulnerability has been identified with the HP-UX pppoec utility. The vulnerability could be exploited in allowing a local user to elevate their privilege. References: CVE-2015-2126 SSRT102094. %NASLMINLEVEL 70300 C Tenable Network...
CVE-2015-2126
HP-UX 11iv2/11iv3: the pppoec utility has a local privilege escalation via its setuid permissions. Attackers can gain root privileges through improper access permissions on /usr/bin/pppoec. HP’s workaround/patrol guidance (HP-UX HPSBUX03359) recommends removing the suid bit (chmod u-s /usr/bin/pp...