CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 2CVE-2011-4834 – HP Application Lifestyle Management 11 - 'GetInstalledPackages' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2011-4834
The GetInstalledPackages function in the configuration tool in HP Application Lifestyle Management (ALM) 11 on AIX, HP-UX, and Solaris allows local users to gain privileges via (1) a Trojan horse /tmp/tmp.txt FIFO or (2) a symlink attack on /tmp/tmp.txt. La función GetInstalledPackages en la herramienta de configuración en HP Application Lifestyle Management (ALM) 11 en AIX, HP-UX, y Solaris permite a usuarios locales ganar privilegios a través de (1) un caballo de troya /tmp/tmp.txt FIFO o (2) un ataque symlink a /tmp/tmp.txt. • https://www.exploit-db.com/exploits/36430 http://0a29.blogspot.com/2011/12/0a29-11-2-privilege-escalation.html http://secunia.com/advisories/47040 http://www.securityfocus.com/archive/1/520783/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/71698 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 3.2EPSS: 0%CPEs: 7EXPL: 0CVE-2011-4160
https://notcve.org/view.php?id=CVE-2011-4160
Unspecified vulnerability in HP Operations Agent 11.00 and Performance Agent 4.73 and 5.0 on AIX, HP-UX, Linux, and Solaris allows local users to bypass intended directory-access restrictions via unknown vectors. Vulnerabilidad no especificada en HP Operations Agent v11.00 y Performance Agent v4.73 y v5.0 en AIX, HP-UX, Linux, y Solaris, permite a usuarios locales evitar las restricciones de acceso del directorio a través de vectores desconocidos • http://marc.info/?l=bugtraq&m=132198248000785&w=2 http://secunia.com/advisories/46971 http://www.securityfocus.com/bid/50761 •
CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0CVE-2011-4159
https://notcve.org/view.php?id=CVE-2011-4159
Unspecified vulnerability in System Administration Manager (SAM) in EMS before A.04.20.11.04_01 on HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors. Una vulnerabilidad no especificada en el Sistema de Gestión de la Administración (SAM) en EMS antes de A.04.20.11.04_01 en HP HP-UX B.11.11, B.11.23, B.11.31 permite a usuarios locales conseguir privilegios a través de vectores desconocidos. • http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03089106 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14353 •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2011-3164
https://notcve.org/view.php?id=CVE-2011-3164
Unspecified vulnerability in HP-UX Containers (formerly HP-UX Secure Resource Partitions (SRP)) A.03.00, A.03.00.002, and A.03.01, when running with patch PHKL_42310, allows local users to gain privileges via unknown vectors. Una vulnerabilidad no especificada en HP-UX Containers (anteriormente HP-UX Secure Resource Partitions (SRP)) A.03.00, A.03.00.002 y A.03.01, cuando se ejecuta con el parche PHKL_42310, permite a usuarios locales conseguir privilegios a través de vectores desconocidos. • http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03057703&ac.admitted=1319830121212.876444892.199480143 http://secunia.com/advisories/46617 http://www.securityfocus.com/bid/50396 http://www.securitytracker.com/id?1026250 https://exchange.xforce.ibmcloud.com/vulnerabilities/71001 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14429 •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2011-2398
https://notcve.org/view.php?id=CVE-2011-2398
Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges or cause a denial of service via unknown vectors. Vulnerabilidad no especificada en el cargador dinámico en HP HP-UX B.11.11, B.11.23, y B.11.31 permite a usuarios locales obtener privilegios o provocar una denegación de servicio a través de vectores desconocidos. • http://marc.info/?l=bugtraq&m=130997622428494&w=2 http://secunia.com/advisories/45132 http://securityreason.com/securityalert/8303 http://securitytracker.com/id?1025749 http://www.osvdb.org/73616 http://www.securityfocus.com/bid/48577 https://exchange.xforce.ibmcloud.com/vulnerabilities/68399 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12615 •