HP-UX PHCO_30191 : HP-UX NLSPath, Local Increase in Privilege (HPSBUX00294 SSRT3656 rev.2)

high Nessus Plugin ID 16481

Synopsis

The remote HP-UX host is missing a security-related patch.

Description

s700_800 11.04 (VVOS) libc cumulative patch :

Superuser cannot restrict the paths set in the NLSPATH environment variable for setuid root programs which are using catopen(3C) and executed by others.

Solution

Install patch PHCO_30191 or subsequent.

See Also

http://www.nessus.org/u?bc794333

Plugin Details

Severity: High

ID: 16481

File Name: hpux_PHCO_30191.nasl

Version: 1.11

Type: local

Published: 2/16/2005

Updated: 1/11/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Patch Publication Date: 3/29/2007

Reference Information

HP: HPSBUX00294, SSRT3656, emr_na-c00908653