Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-2553

4 documents4 sources

Severity

7.2HIGH

EPSS

0.4%

top 40.18%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

HP Tru64

Timeline

PublishedMay 9

Latest updateMay 1

Description

Unspecified vulnerability in dop in HP Tru64 UNIX 5.1B-4, 5.1B-3, and 5.1A PK6 allows local users to gain privileges via a large amount of data in the environment, as demonstrated by a long environment variable.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDhp/tru645.1a, 5.1b3, 5.1b4+2

Patches

Patch: secunia.com ↗Patch: www.securityfocus.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-8wmv-65jp-mqqj: Unspecified vulnerability in dop in HP Tru64 UNIX 5↗2022-05-01

▶

CVEList

CVE-2007-2553: Unspecified vulnerability in dop in HP Tru64 UNIX 5↗2007-05-09

▶

💥Exploits & PoCs

Exploit-DB

HP Tru64 5.0.1 - DOP Command Privilege Escalation↗2007-05-08

▶