ID CVE-2003-0951
Summary Partition Manager (parmgr) in HP-UX B.11.23 does not properly validate certificates that are provided by the cimserver, which allows attackers to obtain sensitive data or gain privileges.
References
Vulnerable Configurations
  • cpe:2.3:o:hp:hp-ux:11.23:*:*:*:*:*:*:*
    cpe:2.3:o:hp:hp-ux:11.23:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 11-10-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
oval via4
accepted 2014-03-10T04:00:50.568-04:00
class vulnerability
contributors
  • name Michael Wood
    organization Hewlett-Packard
  • name Sushant Kumar Singh
    organization Hewlett-Packard
description Partition Manager (parmgr) in HP-UX B.11.23 does not properly validate certificates that are provided by the cimserver, which allows attackers to obtain sensitive data or gain privileges.
family unix
id oval:org.mitre.oval:def:5146
status accepted
submitted 2008-07-09T16:48:33.000-04:00
title HP-UX Running Partition Manager parmgr (1M), Remote Unauthorized Access
version 34
refmap via4
hp HPSBUX0311-296
Last major update 11-10-2017 - 01:29
Published 15-12-2003 - 05:00
Back to Top