VYPR
← All advisories
Unrated severityNVD Advisory· Published Dec 31, 2003· Updated Jun 16, 2026

CVE-2003-1358

CVE-2003-1358

Description

rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

18
  • Microfocus/Hpux17 versions
    cpe:2.3:o:hp:hp-ux:10.00:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:o:hp:hp-ux:10.00:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.01:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.08:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.09:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.10:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.16:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.24:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.26:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.30:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:10.34:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:11.0.4:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:11.04:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:11.20:*:*:*:*:*:*:*
    • cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:*
  • Microfocus/rs.F300llm-create
    Range: >=10.0, <=11.22

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.