Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » HP-UX SWVerify Buffer Overflow Vulnerability

HP-UX SWVerify Buffer Overflow Vulnerability

by Phiber on September 6th, 2001 A problem has been discovered in the operating system that can allow a local user to gain elevated privileges. swverify contains a buffer overflow which is exploitable upon receiving 6039 bytes as an argument.


The swverify program is setuid root, which allows a local user to execute code as root, potentially gaining administrative access to the vulnerable system.


Solution:

HP HP-UX 11.0:

HP patch PHCO_23483


FYI:

HP-UX is the UNIX Operating System variant distributed by Hewlett-Packard, available for use on systems of size varying from workgroup servers to enterprise systems.


Credits go to [email protected]


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »