CVE-2002-2265

Unspecified vulnerability in LDAP Module in System Authentication of Open Source Internet Solutions (OSIS) 5.4 running on Tru64 UNIX 4.0G and 4.0F allows remote attackers to gain access to arbitrary files or gain privileges via unknown attack vectors.

CVSS v2.0 6.4 MEDIUM

6.4^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:N

Exploitability : 10.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://archives.neohapsis.com/archives/compaq/2002-q4/0014.html
http://www.securityfocus.com/bid/6174	Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/10703
http://archives.neohapsis.com/archives/compaq/2002-q4/0014.html
http://www.securityfocus.com/bid/6174	Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/10703

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:hp:tru64:4.0f:::::::*
	cpe:2.3:o:hp:tru64:4.0g:::::::*

cpe:2.3:a:open_source_internet_solutions:open_source_internet_solutions:5.4:*:*:*:*:*:*:*

History

20 Nov 2024, 23:43

Type	Values Removed	Values Added
References	~~() http://archives.neohapsis.com/archives/compaq/2002-q4/0014.html -~~	() http://archives.neohapsis.com/archives/compaq/2002-q4/0014.html -
References	~~() http://www.securityfocus.com/bid/6174 - Patch~~	() http://www.securityfocus.com/bid/6174 - Patch
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/10703 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/10703 -

Information

Published : 2002-12-31 05:00

Updated : 2024-11-20 23:43

NVD link : CVE-2002-2265

Mitre link : CVE-2002-2265

CVE.ORG link : CVE-2002-2265

JSON object : View

Products Affected

hp

tru64

open_source_internet_solutions

open_source_internet_solutions

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2002-2265", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.4, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2002-12-31T05:00:00.000", "references": [{"url": "http://archives.neohapsis.com/archives/compaq/2002-q4/0014.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/6174", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10703", "source": "cve@mitre.org"}, {"url": "http://archives.neohapsis.com/archives/compaq/2002-q4/0014.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/6174", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10703", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in LDAP Module in System Authentication of Open Source Internet Solutions (OSIS) 5.4 running on Tru64 UNIX 4.0G and 4.0F allows remote attackers to gain access to arbitrary files or gain privileges via unknown attack vectors."}], "lastModified": "2024-11-20T23:43:16.220", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:tru64:4.0f:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3E8BA552-394A-4E06-8CAD-24A2F542FD91"}, {"criteria": "cpe:2.3:o:hp:tru64:4.0g:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E43FAAEF-B0DD-466F-A74E-43CBA4CCF7E7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:open_source_internet_solutions:open_source_internet_solutions:5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3403A298-C680-421F-AE92-9F62834A8976"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}