Select local site

F-Secure Vulnerability Information :
HP-UX ftpd Unspecified Privileged Access Vulnerability
[Summary] | [Detailed Description] | [Solution] | [CVE Reference]

Report ID:SA31471
Source:Secunia
Date of Discovery:13.08.2008
Criticality:Moderate
Affects:

HP-UX 11.x
Compromise From:From remote
Compromise Type:Security bypass
DoS
Summary

A vulnerability has been reported in HP-UX, which can be exploited by malicious people to bypass certain security restrictions and to cause a DoS (Denial of Service).
Back to the Top

Detailed Description

A vulnerability has been reported in HP-UX, which can be exploited by malicious people to bypass certain security restrictions and to cause a DoS (Denial of Service).

The vulnerability is caused due to an unspecified error in the ftpd server and can be exploited to gain privileged access.

The vulnerability is reported in HP-UX B.11.11 running ftpd 2.4.x.
Back to the Top

Solution

B.11.11:
Install PHNE_38458 or later.
http://itrc.hp.com
Back to the Top

CVE Reference
CVE-2008-1668
Back to the Top

F-Secure Corporation