Privilege Escalation Vulnerability in HP Application Lifestyle Management (ALM) 11 on AIX, HP-UX, and Solaris

Privilege Escalation Vulnerability in HP Application Lifestyle Management (ALM) 11 on AIX, HP-UX, and Solaris

CVE-2011-4834 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The GetInstalledPackages function in the configuration tool in HP Application Lifestyle Management (ALM) 11 on AIX, HP-UX, and Solaris allows local users to gain privileges via (1) a Trojan horse /tmp/tmp.txt FIFO or (2) a symlink attack on /tmp/tmp.txt.

Learn more about our Cis Benchmark Audit For Ibm Aix.