Vulnerability Bulletins

int(1104)

Vulnerability Bulletins

Incremento de privilegios en HP Serviceguard
Vulnerability classification
Property	Value
Confidence level	Oficial
Impact	Aumento de privilegios
Dificulty	Experto
Required attacker level	Acceso remoto con cuenta
System information
Property	Value
Affected manufacturer	Comercial Software
Affected software	HP-UX HP Serviceguard A.11.13 HP Serviceguard A.11.14 HP Serviceguard A.11.15.00 HP Serviceguard A.11.16.00 HP Cluster Object Manager A.01.03 HP Cluster Object Manager B.01.04 HP Cluster Object Manager B.02.02.00 HP Cluster Object Manager B.03.00.00 HP Cluster Object Manager B.03.00.01 Linux HP Serviceguard A.11.14.04 HP Serviceguard A.11.15.04 HP Cluster Object Manager B.02.01.02 HP Cluster Object Manager B.02.02.02
Description
Se ha descubierto una vulnerabilidad en HP Serviceguard ejecutándose sobre HP-UX y Linux que podría permitir a un usuario sin privilegios de root de la subred elevar sus privilegios.
Solution
HP recomienda la lectura del documento "Securing Serviceguard" disponible en http://docs.hp.com/hpux/ha Actualización de software HP-UX B.11.00 HP Serviceguard A.11.14 - Instalar PHSS_31065 HP Cluster Object Manager B.01.04 - Instalar PHSS_31066 HP Serviceguard A.11.13 - Instalar PHSS_29120 HP Cluster Object Manager B.01.03 - Instalar PHSS_29121 http://itrc.hp.com/ HP-UX B.11.11 HP Serviceguard A.11.16.00 - Instalar PHSS_31071 HP Cluster Object Manager B.03.00.00 - Instalar PHSS_31073 HP Serviceguard A.11.15.00 - Instalar PHSS_31067 HP Cluster Object Manager B.02.02.00 - Instalar PHSS_31069 HP Serviceguard A.11.14 - Instalar PHSS_31065 HP Cluster Object Manager B.01.04 - Instalar PHSS_31066 HP Serviceguard A.11.13 - Instalar PHSS_29120 HP Cluster Object Manager A.01.03 - Instalar PHSS_29121 http://itrc.hp.com/ HP-UX B.11.23 HP Serviceguard A.11.16.00 - Instalar PHSS_31072 HP Cluster Object Manager B.03.00.00 - Instalar PHSS_31074 HP Cluster Object Manager B.03.00.01 - Instalar PHSS_31074 HP Serviceguard A.11.15.00 - Instalar PHSS_31068 HP Cluster Object Manager B.02.02.00 - Instalar PHSS_31070 http://itrc.hp.com/ RedHat 7.3 & Enterprise Linux AS/ES 2.1 (IA-32) HP Serviceguard A.11.14.04 - Instalar SGLX_00019 HP Cluster Object Manager B.02.01.02 - Instalar SGLX_00021 http://itrc.hp.com/ SUSE SLES8 United Linux 1.0 (IA-32) HP Serviceguard A.11.14.04 - Instalar SGLX_00020 HP Cluster Object Manager B.02.01.02 - Instalar SGLX_00022 http://itrc.hp.com/ SUSE SLES8 United Linux 1.0 (IA-32) HP Serviceguard A.11.15.04 - Instalar SGLX_00023 HP Cluster Object Manager B.02.02.02 - Instalar SGLX_00025 http://itrc.hp.com/ SUSE SLES8 United Linux 1.0 (IA-64) HP Serviceguard A.11.15.04 - Instalar SGLX_00024 HP Cluster Object Manager B.02.02.02 - Instalar SGLX_00026 http://itrc.hp.com/ RedHat Enterprise Linux AS/ES 3 (IA-32) HP Serviceguard A.11.15.04 - Instalar SGLX_00027 HP Cluster Object Manager B.02.02.02 - Instalar SGLX_00029 http://itrc.hp.com/ RedHat Enterprise Linux AS 3 (IA-64) HP Serviceguard A.11.15.04 - Instalar SGLX_00028 HP Cluster Object Manager B.02.02.02 - Instalar SGLX_00030 http://itrc.hp.com/
Standar resources
Property	Value
CVE
BID
Other resources
HP SECURITY BULLETIN HPSBUX01080 http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX01080

Version history
Version	Comments	Date
1.0	Aviso emitido	2004-10-22

Vulnerability Bulletins

Incremento de privilegios en HP Serviceguard

Vulnerability classification

System information

Description

Solution

Standar resources

Other resources

Version history