Lucene search

[email protected]NVD:CVE-2007-0139

HistoryJan 09, 2007 - 11:28 a.m.

CVE-2007-0139

2007-01-0911:28:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

Low

EPSS

0.007

Percentile

80.7%

JSON

Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain “unintended privileged access to data and system resources” via unspecified vectors, related to (1) [SYSEXE]CTF$UI.EXE, (2) [SYSMSG]CTF$MESSAGES.EXE, (3) [SYSHLP]CTF$HELP.HLB, and (4) [SYSMGR]CTF$STARTUP.COM.

Affected configurations

Nvd

Node

hpopenvmsMatch7.3openvms_vax

hpopenvmsMatch7.3_2openvms_vax

VendorProductVersionCPE
hpopenvms7.3cpe:2.3:a:hp:openvms:7.3:*:openvms_vax:*:*:*:*:*
hpopenvms7.3_2cpe:2.3:a:hp:openvms:7.3_2:*:openvms_vax:*:*:*:*:*

Vendor	Product	Version	CPE
hp	openvms	7.3	cpe:2.3:a:hp:openvms:7.3::openvms_vax:::::
hp	openvms	7.3_2	cpe:2.3:a:hp:openvms:7.3_2::openvms_vax:::::

References

ftp://ftp.itrc.hp.com/openvms_patches/alpha/V7.3-2/AXP_DNVOSIMUP01-V0703-2.txt

ftp://ftp.itrc.hp.com/openvms_patches/vax/V7.3/VAX_DNVOSIMUP01-V0703.txt

osvdb.org/32583

osvdb.org/32584

osvdb.org/32585

osvdb.org/32586

secunia.com/advisories/23636

www.vupen.com/english/advisories/2007/0063

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

Low

EPSS

0.007

Percentile

80.7%

JSON

Related for NVD:CVE-2007-0139

cvelist1 cve1 securityvulns1 prion1