CVE-2000-0077
CVSS 2.0 Score 7.2 of 10 (high)
Details
Published Jan 2, 2000
Updated: Nov 20, 2024
Summary
CVE-2000-0077 is a vulnerability affecting the October 1998 version of HP-UX aserver program. This issue grants local users elevated privileges by allowing them to specify an alternate PATH for aserver to use when locating the ps and grep commands. By manipulating this feature, a malicious user could run commands with root privileges, compromising the security of the system. This vulnerability poses a significant risk and requires prompt patching to mitigate the threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- HP-UX
Affected Vendors
- HP