Symlink Attack Vulnerability in HP-UX CUE Allows Arbitrary File Overwrite and Root Privilege Escalation

Symlink Attack Vulnerability in HP-UX CUE Allows Arbitrary File Overwrite and Root Privilege Escalation

CVE-1999-1139 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty file.

Learn more about our User Device Pen Test.