CVE-2000-1057

Vulnerabilities in database configuration scripts in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows local users to gain privileges, possibly via insecure permissions.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.securityfocus.com/bid/1682	Patch Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2000-09/0140.html	Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5229

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:hp:openview_network_node_manager:5.01::hp_ux:::::
	cpe:2.3:a:hp:openview_network_node_manager:5.01::solaris:::::
	cpe:2.3:a:hp:openview_network_node_manager:4.11::hp_ux:::::
	cpe:2.3:a:hp:openview_network_node_manager:4.11::solaris:::::
	cpe:2.3:a:hp:openview_network_node_manager:6.1::solaris:::::
	cpe:2.3:a:hp:openview_network_node_manager:6.1::hp_ux_10.x:::::
	cpe:2.3:a:hp:openview_network_node_manager:6.1::hp_ux_11.x:::::

Information

Published : 2000-12-10 21:00

Updated : 2017-10-09 18:29

NVD link : CVE-2000-1057

Mitre link : CVE-2000-1057

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

hp

openview_network_node_manager

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/1682", "name": "1682", "tags": ["Patch", "Vendor Advisory"], "refsource": "BID"}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2000-09/0140.html", "name": "HPSBUX0009-120", "tags": ["Patch", "Vendor Advisory"], "refsource": "HP"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5229", "name": "hp-openview-nnm-scripts(5229)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Vulnerabilities in database configuration scripts in HP OpenView Network Node Manager (NNM) 6.1 and earlier allows local users to gain privileges, possibly via insecure permissions."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2000-1057", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2000-12-11T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:5.01:*:hp_ux:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:5.01:*:solaris:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:4.11:*:hp_ux:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:4.11:*:solaris:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:6.1:*:solaris:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:6.1:*:hp_ux_10.x:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:openview_network_node_manager:6.1:*:hp_ux_11.x:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-10-10T01:29Z"}