Lucene search

K
cveHpCVE-2012-2010
HistoryMay 18, 2012 - 8:55 p.m.

CVE-2012-2010

2012-05-1820:55:06
CWE-264
hp
web.nvd.nist.gov
23
hp openvms
acmelogin
privilege escalation
cve-2012-2010
nvd

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0

Percentile

5.1%

The ACMELOGIN implementation in HP OpenVMS 8.3 and 8.4 on the Alpha platform, and 8.3, 8.3-1H1, and 8.4 on the Itanium platform, when the SYS$ACM system service is enabled, allows local users to gain privileges via unspecified vectors.

Affected configurations

Nvd
Node
hpopenvmsMatch8.3
OR
hpopenvmsMatch8.3alpha
OR
hpopenvmsMatch8.3-1h1integrity_servers
OR
hpopenvmsMatch8.4alpha
OR
hpopenvmsMatch8.4itanium
VendorProductVersionCPE
hpopenvms8.3cpe:/o:hp:openvms:8.3:::
hpopenvms8.3-1h1cpe:/o:hp:openvms:8.3-1h1:::
hpopenvms8.4cpe:/o:hp:openvms:8.4:::

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0

Percentile

5.1%

Related for CVE-2012-2010