Vulnerability CVE-2015-2126

Vulnerability CVE-2015-2126

Published: 2015-07-06

Description:

Unspecified vulnerability in pppoec in HP HP-UX 11iv2 and 11iv3 allows local users to gain privileges by leveraging setuid permissions.

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.2/10	10/10	3.9/10

Exploit range	Attack complexity	Authentication
Local	Low	No required
Confidentiality impact	Integrity impact	Availability impact
Complete	Complete	Complete

Affected software
HP -> Hp-ux

References:

http://www.securityfocus.com/bid/75462

http://www.securitytracker.com/id/1032746

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04718530

Copyright 2024, cxsecurity.com