Vulnerabilities > CVE-2002-1513 - Unspecified vulnerability in Compaq Tcp-Ip Services
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN compaq
exploit available
Summary
The UCX POP server in HP TCP/IP services for OpenVMS 4.2 through 5.3 allows local users to truncate arbitrary files via the -logfile command line option, which overrides file system permissions because the server runs with the SYSPRV and BYPASS privileges.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 4 |
Exploit-Db
| description | OpenVMS 5.3/6.2/7.x UCX POP Server Arbitrary File Modification Vulnerability. CVE-2002-1513. Local exploits for multiple platform |
| id | EDB-ID:21856 |
| last seen | 2016-02-02 |
| modified | 2002-09-25 |
| published | 2002-09-25 |
| reporter | Mike Riley |
| source | https://www.exploit-db.com/download/21856/ |
| title | OpenVms 5.3/6.2/7.x UCX POP Server Arbitrary File Modification Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0010.html
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0010.html
- http://archives.neohapsis.com/archives/compaq/2002-q4/0000.html
- http://archives.neohapsis.com/archives/compaq/2002-q4/0000.html
- http://online.securityfocus.com/archive/1/293070
- http://online.securityfocus.com/archive/1/293070
- http://www.iss.net/security_center/static/10236.php
- http://www.iss.net/security_center/static/10236.php
- http://www.securityfocus.com/bid/5790
- http://www.securityfocus.com/bid/5790