安全研究

安全漏洞
Tru64 screend未名本地安全漏洞

发布日期:2003-04-17
更新日期:2003-04-22

受影响系统:
HP Tru64 screend
    - Compaq Tru64 Unix 5.1A
    - Compaq Tru64 Unix 5.1 PK6 (BL20)
    - Compaq Tru64 Unix 5.1 PK5 (BL19)
    - Compaq Tru64 Unix 5.1 A PK3 (BL3)
    - Compaq Tru64 Unix 5.1
    - Compaq Tru64 Unix 5.0F
    - Compaq Tru64 Unix 5.0A
    - Compaq Tru64 Unix 5.0 A PK3 (BL17)
    - Compaq Tru64 Unix 5.0
    - Compaq Tru64 Unix 4.0G
    - Compaq Tru64 Unix 4.0F
描述:
BUGTRAQ  ID: 7376

HP Tru64是一款HP公司开发的商业性质Unix操作系统。

HP Tru64包含的screend程序存在漏洞,本地攻击者可以利用这个漏洞进行权限提升攻击。

目前没有漏洞细节提供。

<*来源:Hewlett Packard advisory
  
  链接:http://ftp.support.compaq.com/patches/public/unix/v5.1/t64v51b20-c0176800-17832-es-20030404.README
*>

建议:
厂商补丁:

Compaq
------
Compaq已经为此发布了一个安全公告(SSRT3498)以及相应补丁:
SSRT3498:Tru64 UNIX screend Potential Security Vulnerability
链接:http://ftp.support.compaq.com/patches/public/unix/v5.1/t64v51b20-c0176800-17832-es-20030404.README

补丁下载:

Compaq Tru64 4.0 g PK3 (BL17):

Hewlett Packard Upgrade T64V40GB17-C0029300-17837-ES-20030404
http://ftp.support.compaq.com/patches/public/unix/v4.0g/t64v40gb17-c0029300-17837-es-20030404.tar

Compaq Tru64 4.0 f PK7 (BL18):

Hewlett Packard Upgrade DUV40FB18-C0093500-17836-ES-20030404
http://ftp.support.compaq.com/patches/public/unix/v4.0f/duv40fb18-c0093500-17836-es-20030404.tar

Compaq Tru64 5.1 b PK1 (BL1):

Hewlett Packard Upgrade T64V51BB1-C0008100-17827-ES-20030404
http://ftp.support.compaq.com/patches/public/unix/v5.1b/t64v51bb1-c0008100-17827-es-20030404.tar

Compaq Tru64 5.1 a PK4 (BL21):

Hewlett Packard Upgrade T64V51AB21-C0113300-17831-ES-20030404
http://ftp.support.compaq.com/patches/public/unix/v5.1a/t64v51ab21-c0113300-17831-es-20030404.tar

Compaq Tru64 5.1 PK6 (BL20):

Hewlett Packard Upgrade T64V51B20-C0176800-17832-ES-20030404
http://ftp.support.compaq.com/patches/public/unix/v5.1/t64v51b20-c0176800-17832-es-20030404.tar

浏览次数:2752
严重程度:0(网友投票)
本安全漏洞由绿盟科技翻译整理,版权所有,未经许可,不得转载
绿盟科技给您安全的保障