CVE-1999-1089Improper Restriction of Operations within the Bounds of a Memory Buffer in HP Hp-ux

3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.1%
top 82.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP Hp-ux
Timeline
PublishedDec 13
Latest updateApr 30

Description

Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line argument.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDhp/hp-ux10.20+2

Patches

Patch: ciac.llnl.govPatch: ciac.llnl.govPatch: ciac.llnl.gov

🔴Vulnerability Details

2
GHSA
GHSA-wxhm-4wpf-cr7c: Buffer overflow in chfn command in HP-UX 92022-04-30
CVEList
CVE-1999-1089: Buffer overflow in chfn command in HP-UX 92001-09-12
CVE-1999-1089 — HP Hp-ux vulnerability | cvebase