CVE-2007-2553

HP Tru64 UNIX <5.1B-4 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2553. PoCs published by Daniele Calore.

AI-analyzed exploit summary This exploit leverages a local privilege escalation vulnerability in HP Tru64 UNIX by manipulating the environment size and exploiting the 'dop' binary to execute arbitrary code with superuser privileges. It creates a malicious 'dopAction' to spawn a root shell.

Description

Unspecified vulnerability in dop in HP Tru64 UNIX 5.1B-4, 5.1B-3, and 5.1A PK6 allows local users to gain privileges via a large amount of data in the environment, as demonstrated by a long environment variable.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Daniele Calore · bashlocalunix

https://www.exploit-db.com/exploits/30017

View Code ZIP pw:eip

This exploit leverages a local privilege escalation vulnerability in HP Tru64 UNIX by manipulating the environment size and exploiting the 'dop' binary to execute arbitrary code with superuser privileges. It creates a malicious 'dopAction' to spawn a root shell.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: HP Tru64 UNIX 5.1, 5.1A, 5.1B

Auth required

Prerequisites: Local access to the system · The 'dop' binary must have the set-user ID bit set · exec_disable_arg_limit must be set to 0

MITRE ATT&CK