Lucene search

MitreCVE-2008-3539

HistorySep 11, 2008 - 1:12 a.m.

CVE-2008-3539

2008-09-1101:12:57

CWE-200

mitre

web.nvd.nist.gov

cve-2008-3539

openview

hpsi

windows

vulnerability

connectors

nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

5.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

Unspecified vulnerability in HP OpenView Select Identity (HPSI) Connectors on Windows, as used in HPSI Active Directory Connector 2.30 and earlier, HPSI SunOne Connector 1.14 and earlier, HPSI eDirectory Connector 1.12 and earlier, HPSI eTrust Connector 1.02 and earlier, HPSI OID Connector 1.02 and earlier, HPSI IBM Tivoli Dir Connector 1.02 and earlier, HPSI TOPSecret Connector 2.22.001 and earlier, HPSI RACF Connector 1.12.001 and earlier, HPSI ACF2 Connector 1.02 and earlier, HPSI OpenLDAP Connector 1.02 and earlier, and HPSI BiDir DirX Connector 1.00.003 and earlier, allows local users to obtain sensitive information via unknown vectors.

Affected configurations

Nvd

Node

hphpsi_acf2_connectorRange≤1.02

hphpsi_active_directory_connectorRange≤1.70.003

hphpsi_active_directory_connectorRange≤2.10.002

hphpsi_active_directory_connectorRange≤2.20

hphpsi_active_directory_connectorRange≤2.30

hphpsi_bidir_dirx_connectorRange≤1.00.003

hphpsi_edirectory_connectorRange≤1.12

hphpsi_etrust_connectorRange≤1.02

hphpsi_oid_connectorRange≤1.02

hphpsi_openldap_connectorRange≤1.02

hphpsi_racf_connectorRange≤1.12.001

hphpsi_sunone_connectorRange≤1.14

hphpsi_topsecret_connectorRange≤2.22.001

hpibm_tivoli_dir_connectorRange≤1.02

AND

microsoftwindows

VendorProductVersionCPE
hphpsi_acf2_connector*cpe:2.3:a:hp:hpsi_acf2_connector:*:*:*:*:*:*:*:*
hphpsi_active_directory_connector*cpe:2.3:a:hp:hpsi_active_directory_connector:*:*:*:*:*:*:*:*
hphpsi_bidir_dirx_connector*cpe:2.3:a:hp:hpsi_bidir_dirx_connector:*:*:*:*:*:*:*:*
hphpsi_edirectory_connector*cpe:2.3:a:hp:hpsi_edirectory_connector:*:*:*:*:*:*:*:*
hphpsi_etrust_connector*cpe:2.3:a:hp:hpsi_etrust_connector:*:*:*:*:*:*:*:*
hphpsi_oid_connector*cpe:2.3:a:hp:hpsi_oid_connector:*:*:*:*:*:*:*:*
hphpsi_openldap_connector*cpe:2.3:a:hp:hpsi_openldap_connector:*:*:*:*:*:*:*:*
hphpsi_racf_connector*cpe:2.3:a:hp:hpsi_racf_connector:*:*:*:*:*:*:*:*
hphpsi_sunone_connector*cpe:2.3:a:hp:hpsi_sunone_connector:*:*:*:*:*:*:*:*
hphpsi_topsecret_connector*cpe:2.3:a:hp:hpsi_topsecret_connector:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hp	hpsi_acf2_connector	*	cpe:2.3:a:hp:hpsi_acf2_connector::::::::
hp	hpsi_active_directory_connector	*	cpe:2.3:a:hp:hpsi_active_directory_connector::::::::
hp	hpsi_bidir_dirx_connector	*	cpe:2.3:a:hp:hpsi_bidir_dirx_connector::::::::
hp	hpsi_edirectory_connector	*	cpe:2.3:a:hp:hpsi_edirectory_connector::::::::
hp	hpsi_etrust_connector	*	cpe:2.3:a:hp:hpsi_etrust_connector::::::::
hp	hpsi_oid_connector	*	cpe:2.3:a:hp:hpsi_oid_connector::::::::
hp	hpsi_openldap_connector	*	cpe:2.3:a:hp:hpsi_openldap_connector::::::::
hp	hpsi_racf_connector	*	cpe:2.3:a:hp:hpsi_racf_connector::::::::
hp	hpsi_sunone_connector	*	cpe:2.3:a:hp:hpsi_sunone_connector::::::::
hp	hpsi_topsecret_connector	*	cpe:2.3:a:hp:hpsi_topsecret_connector::::::::

Rows per page:

1-10 of 121

References

marc.info/?l=bugtraq&m=122062779731581&w=2

secunia.com/advisories/31764

securityreason.com/securityalert/4236

securitytracker.com/id?1020821

www.securityfocus.com/bid/31024

www.vupen.com/english/advisories/2008/2501

exchange.xforce.ibmcloud.com/vulnerabilities/44916

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

5.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2008-3539