Vulnerabilities > CVE-2010-1973 - Information Disclosure vulnerability in Openvms

CVSS 6.8 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

NVD

Published: 2010-07-22

Updated: 2019-10-09

Summary

Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors. Per: http://marc.info/?l=bugtraq&m=127905660900687&w=2 'impacted versions are listed. HP OpenVMS ALPHA v 8.3, v 8.2, v 7.3-2 and earlier HP OpenVMS Itanium v 8.3-1H1, v 8.3, v 8.2-1 and earlier' Per: http://marc.info/?l=bugtraq&m=127905660900687&w=2 'HP has made the following patch kits available to resolve the vulnerability. Patch kit information and installation instructions are provided with each kit as noted below . The patch kits and installation instructions are available from the following location using anonymous ftp: ftp://ftp.itrc.hp.com/openvms_patches

Vulnerable Configurations

Part	Description	Count
Application	Hp HP Openvms 6.2 HP Openvms 7.2 HP Openvms 7.2-1 HP Openvms 7.2-1H1 HP Openvms 7.2-2 HP Openvms 7.2-6C2 HP Openvms 7.3-1 HP Openvms 8.2 HP Openvms 8.3 HP Openvms 8.3-1H1	10
OS	Hp HP Openvms 7.3 HP Openvms - HP Openvms 7.3-2	3

Summary

Vulnerable Configurations

References