Lucene search
HistoryAug 19, 2005 - 4:00 a.m.
CVE-2004-0951
cve-2004-0951
hp ignite-ux
tftp server
make_recovery command
vulnerability
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.037 Low
EPSS
Percentile
91.8%
The make_recovery command for the TFTP server in HP Ignite-UX before C.6.2.241 makes a copy of the password file in the TFTP directory tree, which allows remote attackers to obtain sensitive information.
Affected configurations
Node
hpignite-uxMatchc.6.2.241
| CPE | Name | Operator | Version |
|---|---|---|---|
| hp:ignite-ux | hp ignite-ux | eq | c.6.2.241 |
Related
openvas
openvas
TFTP file detection (HP Ignite-UX passwd)
2006-03-26 00:00:00
HP-UX Update for Ignite-UX HPSBUX01219
2009-05-05 00:00:00
cvelist
cvelist
CVE-2004-0951
2005-08-19 04:00:00
nessus
nessus
HP Ignite-UX TFTP /etc/pass File Disclosure
2005-08-26 00:00:00
nvd
nvd
CVE-2004-0951
2004-12-31 05:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.037 Low
EPSS
Percentile
91.8%
Related for CVE-2004-0951