Back to search
CVE-2002-1513
Published: Sep 1, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
The UCX POP server in HP TCP/IP services for OpenVMS 4.2 through 5.3 allows local users to truncate arbitrary files via the -logfile command line option, which overrides file system permissions because the server runs with the SYSPRV and BYPASS privileges.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
5790
vdb-entry
x_refsource_BID
openvms-pop-gain-privileges(10236)
vdb-entry
x_refsource_XF
20020927 OpenVMS POP server local vulnerability
mailing-list
x_refsource_BUGTRAQ
20021001 [security bulletin] SSRT2371 HP OpenVMS Potential POP server local vulnerability (fwd)
mailing-list
x_refsource_BUGTRAQ
SSRT2371
vendor-advisory
x_refsource_COMPAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now