Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0951

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0951
Last Modified 05 Sep 2008 04:39:54
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0951

Summary

The make_recovery command for the TFTP server in HP Ignite-UX before C.6.2.241 makes a copy of the password file in the TFTP directory tree, which allows remote attackers to obtain sensitive information.

Vulnerable Systems

Operating System

  • Hp Ignite-ux C.6.2.241


References

XF - hpigniteux-makerecovery-bypass-security(21858)

MISC - http://www.corsaire.com/advisories/c041123-001.txt

SECUNIA - 16456

BID - 14568

SECTRACK - 1014711


Last Updated: 27 May 2016 10:38:49