Oval Definition:oval:org.mitre.oval:def:5466
Revision Date:2014-03-24Version:21
Title:HP-UX Running Software Distributor (SD), Local Increased Privileges.
Description:Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local users to execute arbitrary code via a long LANG environment variable to setuid programs such as (1) swinstall and (2) swmodify.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2003-0089
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX00293
  • HP Release B.11.04
  • AND filesets tests
  • SW-DIST.SD-CMDS is installed
  • OR SW-DIST.SD-AGENT is installed
  • AND NOT Patch PHCO_30006 is installed
  • OR Criteria meets HP Security Bulletin HPSBUX00293
  • HP-UX B.11.11
  • AND filesets tests
  • SW-DIST.SD-CMDS is installed
  • OR SW-DIST.SD-AGENT is installed
  • AND NOT Patch PHCO_28848 is installed
  • OR Criteria meets HP Security Bulletin HPSBUX00293
  • HP Release B.11.00
  • AND filesets tests
  • SW-DIST.SD-CMDS is installed
  • OR SW-DIST.SD-AGENT is installed
  • AND NOT Patch PHCO_28847 is installed
    • BACK