Vulnerability CVE-2003-1358 - CERT Civis.Net

Vulnerability Name:

CVE-2003-1358 (CCN-11312)

Assigned:

2003-02-12

Published:

2003-02-12

Updated:

2017-07-29

Summary:

rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.

CVSS v3 Severity:

5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2003-1358

Source: SREASON
Type: UNKNOWN
3236

Source: CCN
Type: OSVDB ID: 60336
HP-UX rs.F300 PATH Environment Variable Subversion Local Privilege Escalation

Source: HP
Type: UNKNOWN
HPSBUX0302-240

Source: BUGTRAQ
Type: UNKNOWN
20030710 [LSD] HP-UX security vulnerabilities

Source: BID
Type: Exploit
6837

Source: CCN
Type: BID-6837
HP-UX rs.F3000 Unspecified Unauthorized Access Vulnerability

Source: XF
Type: UNKNOWN
hp-rsf3000-daemon-access(11312)

Source: XF
Type: UNKNOWN
hp-rsf3000-daemon-access(11312)

Vulnerable Configuration:

Configuration 1:

cpe:/o:hp:hp-ux:10.00:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.01:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.08:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.09:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.10:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.16:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.20:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.24:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.26:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.30:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.34:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.00:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.0.4:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.04:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.11:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.20:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.22:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:hp:hp-ux:10.00:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.09:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.01:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.10:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.00:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.20:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.30:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.16:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.04:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.11:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.24:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.26:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.20:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.22:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.23:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.11i:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.31:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.02:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.03:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.08:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:10.34:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.0.4:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.10:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.2:*:*:*:*:*:*:*

OR cpe:/o:hp:hp-ux:11.4:*:*:*:*:*:*:*

Denotes that component is vulnerable