Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0134

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2001-0134
Last Modified 05 Sep 2008 04:23:21
Published 12 Mar 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0134

Summary

Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote attackers to execute arbitrary commands via a long user name.

Vulnerable Systems

Operating System

  • Digital Unix 4.0f

  • Digital Unix 4.0g

  • Digital Unix 5.0

Application

  • Compaq Armada Insight Manager 4.20

  • Compaq Armada Insight Manager 4.20j

  • Compaq Enterprise Volume Manager-command Scripter 1.0

  • Compaq Enterprise Volume Manager-command Scripter 1.1

  • Compaq Foundation Agents 1.0

  • Compaq Foundation Agents 2.1

  • Compaq Foundation Agents 4.0

  • Compaq Foundation Agents 4.90

  • Compaq Insight Management Agent 4.37e

  • Compaq Insight Management Desktop Web Agent 3.7

  • Compaq Insight Manager Lc 1.3c

  • Compaq Insight Manager Lc 1.50a

  • Compaq Insight Manager Xe 1.0

  • Compaq Insight Manager Xe 1.21

  • Compaq Intelligent Cluster Administrator 1.0

  • Compaq Intelligent Cluster Administrator 2.1

  • Compaq Management Agents 4.30j

  • Compaq Management Agents 4.35j

  • Compaq Management Agents 4.36e

  • Compaq Management Agents 4.36j

  • Compaq Open San Manager 1.0

  • Compaq Sanworks Resource Monitor 1.0

  • Compaq Storage Allocation Reporter 1.0

  • Compaq Survey Utility 2.17

  • Compaq Survey Utility 2.18

  • Compaq Survey Utility 2.33

  • Compaq System Healthcheck 3.0


References

COMPAQ - SSRT0705

BID - 2200

BUGTRAQ - 20010116 iXsecurity.20001120.compaq-authbo.a


Last Updated: 27 May 2016 10:36:08