Vulnerabilities > CVE-2001-0978 - Unspecified vulnerability in HP Hp-Ux 10.26

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

NVD

Published: 2001-09-03

Updated: 2008-09-05

Summary

login in HP-UX 10.26 does not record failed login attempts in /var/adm/btmp, which could allow attackers to conduct brute force password guessing attacks without being detected or observed using the lastb program.

Vulnerable Configurations

Part	Description	Count
OS	Hp HP HP UX 10.26	1

References

http://archives.neohapsis.com/archives/hp/2001-q3/0052.html
http://www.iss.net/security_center/static/8632.php
http://www.securityfocus.com/bid/3289