| New User, Welcome! Login |
privilege elevation
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03312417
Version: 2
HPSBMU02775 SSRT100853 rev.2 - HP Performance Insight for Networks Running on HP-UX, Linux, Solaris, and Windows, Remote SQL Injection, Cross Site Scripting (XSS), Privilege Elevation
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2012-05-07
Last Updated: 2012-05-09
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03312417
Version: 1
HPSBMU02775 SSRT100853 rev.1 - HP Performance Insight for Networks Running on HP-UX, Linux, Solaris, and Windows, Remote SQL Injection, Cross Site Scripting (XSS), Privilege Elevation
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2012-05-07
Last Updated: 2012-05-07
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02027185
Version: 1
HPSBMA02525 SSRT100083 rev.1 - HP System Insight Manager Running on HP-UX, Linux, and Windows , Remote Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), Privilege Elevation
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-04-27
Last Updated: 2010-04-27
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02031621
Version: 1
HPSBMA02494 SSRT090168 rev.1 - HP Virtual Machine Manager (VMM) for Windows, Remote Unauthorized Access, Privilege Elevation
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-04-21
Last Updated: 2010-04-21
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01420154
Version: 1
HPSBTU02325 SSRT080006 rev.1 - HP Internet Express for Tru64 UNIX running PostgreSQL, Arbitrary Code Execution, Privilege Elevation, or Denial of Service (DoS)
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2008-04-01
Last Updated: 2008-04-01
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02748970
Version: 1
HPSBMA02664 SSRT100417 rev.1 - HP Insight Control Performance Management for Windows, Remote Privilege Elevation, Cross Site Request Forgery (CSRF)
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2011-04-20
Last Updated: 2011-04-20
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02749050
Version: 1
HPSBMA02665 SSRT100185 rev.1 - HP Virtual Server Environment for Windows, Remote Privilege Elevation
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2011-04-20
Last Updated: 2011-04-20
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
ESA-2012-009: EMC Documentum Content Server privilege elevation vulnerability.
EMC Identifier: ESA-2012-009
EMC Identifier: CS-16072
EMC Identifier: CS-16073
CVE Identifier: CVE-2011-4144
>
> And this IS generally impossible. Once spawned setuid root binary that will
> send a signal while dying, you have no control over the moment the signal is
> being sent at. The exploitation scenario for this bug is a bit artificial.
IMO, privilege elevation is a security issue regardless of whether or
not one can provide a "useful" scenario immediately upon the issue
becoming known.
--
Glynn Clements <glynn@gclements.plus.com>
> > And this IS generally impossible. Once spawned setuid root binary that will
> > send a signal while dying, you have no control over the moment the signal is
> > being sent at. The exploitation scenario for this bug is a bit artificial.
>
> IMO, privilege elevation is a security issue regardless of whether or
> not one can provide a "useful" scenario immediately upon the issue
> becoming known.
>
I talked about the severity of this bug here. I see it's much simpler to post
the patch fixing it rather than endlessly discussing it here. Anyway, I'm not
> > > And this IS generally impossible. Once spawned setuid root binary that will
> > > send a signal while dying, you have no control over the moment the signal is
> > > being sent at. The exploitation scenario for this bug is a bit artificial.
> >
> > IMO, privilege elevation is a security issue regardless of whether or
> > not one can provide a "useful" scenario immediately upon the issue
> > becoming known.
>
> I talked about the severity of this bug here.
OpenBlog is a free software for developing blogging platform. OpenBlog is
written on PHP language and available at http://www.open-blog.info. In
August 2010, Bkis Security discovered some XSS, CSRF vulnerabilities on this
software; especially, there is a vulnerability which might allow privilege
elevation on OpenBlog 1.2.1. Taking advantage of this vulnerability, hacker
might execute malicious code on user's browser or even get control of Blog.
Bkis has sent its warning to the developer.
Details: http://security.bkis.com/?p=1382
SVRT Advisory: Bkis-04-2010
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY
Potential security vulnerabilities have been identified with Insight Control for Linux (IC-Linux). The vulnerabilities could be exploited remotely to allow unauthorized elevation of privilege, execution of arbitrary code, encryption downgrade, information disclosure, and Denial of Service (DoS).
References: CVE-2010-3864, CVE-2010-4180, CVE-2011-0014, CVE-2011-0539, CVE-2011-1535 (privilege elevation)
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
Insight Control for Linux (IC-Linux) prior to v6.3
BACKGROUND
|
|
|
