Описание
HP HP-UX B11.11 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00097
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
HP HP-UX B11.11 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572.
EPSS
Процентиль: 27%
0.00097
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other