Описание
HP DECnet-Plus 8.3 before ECO03 for OpenVMS on the Alpha platform uses world-writable permissions for the OSIT$NAMES logical name table, which allows local users to bypass intended access restrictions and modify this table via the (1) SYS$CRELNM and (2) SYS$DELLNM system services.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:hp:decnet_plus_for_openvms:8.3:*:*:*:*:*:*:*
cpe:2.3:a:hp:openvms:8.3:*:*:*:*:*:*:*
EPSS
Процентиль: 24%
0.00079
Низкий
2.1 Low
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
HP DECnet-Plus 8.3 before ECO03 for OpenVMS on the Alpha platform uses world-writable permissions for the OSIT$NAMES logical name table, which allows local users to bypass intended access restrictions and modify this table via the (1) SYS$CRELNM and (2) SYS$DELLNM system services.
EPSS
Процентиль: 24%
0.00079
Низкий
2.1 Low
CVSS2
Дефекты
CWE-264