Vulnerabilities > CVE-2002-2263 - Configuration vulnerability in HP Visualize Conference FTP B.11.00.11

CVSS 6.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

NONE

local

low complexity

CWE-16

NVD

Published: 2002-12-31

Updated: 2017-07-29

Summary

The installation program for HP-UX Visualize Conference B.11.00.11 running on HP-UX 11.00 and 11.11 installs /etc/dt and its subdirecties with insecure permissions, which allows local users to read or write arbitrary files.

Vulnerable Configurations

Part	Description	Count
OS	Hp HP HP UX 11.00 HP HP UX 11.11	2
Application	Hp HP Visualize Conference FTP B.11.00.11	1

Common Weakness Enumeration (CWE)

CWE-16 - Configuration

References

http://www.securityfocus.com/advisories/4766
http://www.securityfocus.com/bid/6357
https://exchange.xforce.ibmcloud.com/vulnerabilities/10838