HP-UX PHSS_25787 : HP-UX running CDE dtspcd, Remote Unauthorized Access, Increased Privilege, Arbitrary Code Execution (HPSBUX00175 SSRT071388 rev.5)

Critical Nessus Plugin ID 16917


The remote HP-UX host is missing a security-related patch.


s700_800 11.00 CDE Runtime DEC2001 Periodic Patch :

Buffer overflow in dtspcd.


Install patch PHSS_25787 or subsequent.

See Also


Plugin Details

Severity: Critical

ID: 16917

File Name: hpux_PHSS_25787.nasl

Version: $Revision: 1.17 $

Type: local

Published: 2005/02/16

Modified: 2014/02/25

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2001/12/18

Vulnerability Publication Date: 2002/07/10

Exploitable With


Metasploit (Solaris dtspcd Heap Overflow)

Reference Information

CVE: CVE-2001-0803

BID: 3517

OSVDB: 4503

HP: emr_na-c00994317, HPSBUX00175, SSRT071388

CWE: 119