Vulnerabilities > CVE-2007-2791 - Unspecified vulnerability in HP Tru64 5.1B3/5.1B4

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
hp
critical
exploit available
NVD
Published: 2007-05-22
Updated: 2017-07-29

Summary

Unspecified vulnerability in the Secure Shell (SSH) in HP Tru64 UNIX 5.1B-4 and 5.1B-3 allows remote attackers to identify valid users via unspecified vectors, probably related to timing attacks and AuthInteractiveFailureRandomTimeout.

Vulnerable Configurations

Part Description Count
OS
Hp
2

Exploit-Db

descriptionHP Tru64 Remote Secure Shell User Enumeration Exploit (CVE-2007-2791). CVE-2007-2791. Remote exploit for tru64 platform
idEDB-ID:4032
last seen2016-01-31
modified2007-06-04
published2007-06-04
reporterbunker
sourcehttps://www.exploit-db.com/download/4032/
titleHP Tru64 - Remote Secure Shell User Enumeration Exploit

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/57079/hptru64-enum.txt
idPACKETSTORM:57079
last seen2016-12-05
published2007-06-07
reporterAndrea Purificato
sourcehttps://packetstormsecurity.com/files/57079/hptru64-enum.txt.html
titlehptru64-enum.txt

Seebug

  • bulletinFamilyexploit
    descriptionNo description provided by source.
    idSSV:6904
    last seen2017-11-19
    modified2007-06-05
    published2007-06-05
    reporterRoot
    sourcehttps://www.seebug.org/vuldb/ssvid-6904
    titleHP Tru64 Remote Secure Shell User Enumeration Exploit (CVE-2007-2791)
  • bulletinFamilyexploit
    descriptionNo description provided by source.
    idSSV:64742
    last seen2017-11-19
    modified2014-07-01
    published2014-07-01
    reporterRoot
    sourcehttps://www.seebug.org/vuldb/ssvid-64742
    titleHP Tru64 - Remote Secure Shell User Enumeration Exploit

References