Sr10.3

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

critical

NVD

Published: 1991-12-18

Updated: 2017-12-19

Summary

Vulnerability in crp in Hewlett Packard Apollo Domain OS SR10 through SR10.3 allows remote attackers to gain root privileges via insecure system calls, (1) pad_$dm_cmd and (2) pad_$def_pfk().

Vulnerable Configurations

Part	Description	Count
OS	Hp HP Apollo Domain OS - HP Apollo Domain OS Sr10.2 HP Apollo Domain OS Sr10.3	3

References

http://www.cert.org/advisories/CA-1991-23.html
http://www.securityfocus.com/bid/34
https://exchange.xforce.ibmcloud.com/vulnerabilities/7158