CVE-2001-1256 — HP Hp-ux vulnerability

3 documents3 sources

Severity

1.2LOWNVD

EPSS

0.5%

top 33.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Hp-ux

Timeline

PublishedJun 11

Latest updateApr 30

Description

kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows local users to create arbitrary world-writeable files via a symlink attack on the (1) /tmp/.kmmodreg_lock and (2) /tmp/kmpath.tmp temporary files.

CVSS vector

AV:L/AC:H/C:N/I:P/A:NExploitability: 1.9 | Impact: 2.9

Affected Packages1 packages

▶NVDhp/hp-ux11.00, 11.04, 11.11+2

Patches

Patch: ciac.llnl.gov ↗Patch: ciac.llnl.gov ↗

🔴Vulnerability Details

GHSA

GHSA-6fr4-8mj5-5xc5: kmmodreg in HP-UX 11↗2022-04-30

▶

CVEList

CVE-2001-1256: kmmodreg in HP-UX 11↗2002-05-03

▶