CVE-2005-3277

The LPD service in HP-UX 10.20 11.11 (11i) and earlier allows remote attackers to execute arbitrary code via shell metacharacters ("`" or single backquote) in a request that is not properly handled when an error occurs, as demonstrated by killing the connection, a different vulnerability than CVE-2002-1473.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*

History

No history.

Information

Published : 2005-10-21 18:02

Updated : 2023-12-10 10:28


NVD link : CVE-2005-3277

Mitre link : CVE-2005-3277

CVE.ORG link : CVE-2005-3277


JSON object : View

Products Affected

hp

  • hp-ux