Security Bug in Legacy Unix HP-UX

Aug 10, 2007

Jan Rähm

A security bug has been discovered in Hewlett Packard's HP-UX Unix version; there are no plans to remove it.

Security researchers iDefense disclosed that attackers can exploit a buffer overflow bug in the "ldcconn" module to execute arbitrary code. The module is part of the "HP Controller for Cisco Local Director" configuration tool and runs on TCP port 17781 via "inetd". An attacker can provoke a buffer overflow by sending an overly long command string to this port.

The bug affects HP-UX Version 11.x systems sold after the year 2000. According to HP there are no plans to remove the bug as the HP controller is no longer maintained. Administrators are advised to use other configuration tools or migrate to a more recent system.

Support Our Work

Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.

News

AUR Repository Still Under DDoS Attack

Arch Linux , Security

Arch User Repository continues to be under a DDoS attack that has been going on for two weeks.
RingReaper Malware Poses Danger to Linux Systems

Linux , malware , Security

A new kind of malware exploits modern Linux kernels for I/O operations.
Happy Birthday, Linux

Linux , open source , Operating Systems

On August 25, Linux officially turns 34.
VirtualBox 7.2 Has Arrived

Kernel , Linux , Virtualization

With early support for Linux kernel 6.17 and other new additions, VirtualBox 7.2 is a must-update for users.
Linux Mint 22.2 Beta Available for Testing

Linux mint , Operating Systems , Wayland

Some interesting new additions and improvements are coming to Linux Mint. Check out the Linux Mint 22.2 Beta to give it a test run.
Debian 13.0 Officially Released

DEBIAN , Linux , Operating Systems

After two years of development, the latest iteration of Debian is now available with plenty of under-the-hood improvements.
Upcoming Changes for MXLinux

MXLinux , Plasma , Wayland

MXLinux 25 has plenty in store to please all types of users.
A New Linux AI Assistant in Town

Artificial Inte... , Linux , LLM

Newelle, a Linux AI assistant, works with different LLMs and includes document parsing and profiles.
Linux Kernel 6.16 Released with Minor Fixes

Kernel , Linux , Security

The latest Linux kernel doesn't really include any big-ticket features, just a lot of lines of code.
EU Sovereign Tech Fund Gains Traction

funding , open source , Security

OpenForum Europe recently released a report regarding a sovereign tech fund with backing from several significant entities.

Security Bug in Legacy Unix HP-UX

Related content

Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters

Support Our Work

News

AUR Repository Still Under DDoS Attack

RingReaper Malware Poses Danger to Linux Systems

Happy Birthday, Linux

VirtualBox 7.2 Has Arrived

Linux Mint 22.2 Beta Available for Testing

Debian 13.0 Officially Released

Upcoming Changes for MXLinux

A New Linux AI Assistant in Town

Linux Kernel 6.16 Released with Minor Fixes

EU Sovereign Tech Fund Gains Traction

Security Bug in Legacy Unix HP-UX

Related content

Subscribe to our Linux Newsletters Find Linux and Open Source Jobs Subscribe to our ADMIN Newsletters

Support Our Work

News

Tag Cloud

Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters