• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

HP-UX RLPDaemon Arbitrary Log File Creation Vulnerability

HP-UX is the Unix Operating System developed and distributed by Hewlett Packard.

A problem has been discovered that could allow a local user to gain elevated privileges. The problem manifests itself when the program is invoked with all three supported flags (-i, -l, and -L). The rlpdaemon program is setuid root. When executed with all three flags, the program can be used to create a file in any place on the file system. With carefully crafted requests, a local user could generate a log file in a specific place with any file name, and could allow the user to gain elevated privileges.