EUVD-2015-2236

Malware in sbrugna...

The vulnerability of the HP-UX operating system, which allows a hacker to increase their privileges

The vulnerability of the pppoec component in the HP-UX operating system is related to deficiencies in access control for certain functions. Exploiting this vulnerability could allow an attacker, operating locally, to enhance their privileges...

CVE-2015-2126

Unspecified vulnerability in pppoec in HP HP-UX 11iv2 and 11iv3 allows local users to gain privileges by leveraging setuid permissions...

CVE-2015-2126

Unspecified vulnerability in pppoec in HP HP-UX 11iv2 and 11iv3 allows local users to gain privileges by leveraging setuid permissions...

CVE-2015-2126

HP-UX 11iv2/11iv3: the pppoec utility has a local privilege escalation via its setuid permissions. Attackers can gain root privileges through improper access permissions on /usr/bin/pppoec. HP’s workaround/patrol guidance (HP-UX HPSBUX03359) recommends removing the suid bit (chmod u-s /usr/bin/pp...

[security bulletin] HPSBUX03359 rev.1 - HP-UX pppoec, local elevation of privilege

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04718530 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04718530 Version: 1 HPSBUX03359 rev....

HP-UX 'pppoec' Access Privilege Vulnerability

HP-UX is a commercial linux operating system. The HP-UX '/usr/bin/pppoec' tool fails to set file access permissions correctly, allowing local users to invoke the tool and execute arbitrary commands with root privileges...