HPUX PCLToTIFF Denial of Service Vulnerability

HP-UX is the UNIX Variant Operating System distributed by Hewlett Packard. HP-UX is designed for operation on systems ranging from desktop servers to large enterprise systems.

A problem in the software could allow a local user to deny service to the system. The program pcltotiff included with HP-UX revisions contains a flaw that could be exploited by a local user to deny access to legitimate users of the system. In a default installation of HP-UX, pcltotiff is installed SGID bin. Details on the nature of the vulnerability are currently unavailable.

This problem makes it possible for a user with local access to deny service to legitimate users of the system.


Privacy Statement
Copyright 2010, SecurityFocus