CVE-2002-1439 - Vulnerability Details - OpenCVE

Unknown vulnerability related to stack corruption in the TGA daemon for HP-UX 11.04 (VVOS) Virtualvault 4.0, 4.5, and 4.6 may allow attackers to obtain access to system files.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Hp	Virtualvault Vvos

Configuration 1 [-]

OR	cpe:2.3:a:hp:virtualvault:4.0:::::::*
	cpe:2.3:a:hp:virtualvault:4.5:::::::*
	cpe:2.3:a:hp:virtualvault:4.6:::::::*

Configuration 2 [-]

cpe:2.3:o:hp:vvos:11.04:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://archives.neohapsis.com/archives/hp/2002-q3/0050.html
http://www.iss.net/security_center/static/9846.php
http://www.securityfocus.com/bid/5459

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2003-03-18T05:00:00

Updated: 2024-08-08T03:26:28.299Z

Reserved: 2003-02-05T00:00:00

Link: CVE-2002-1439

Vulnrichment

No data.

NVD

Status : Modified

Published: 2003-04-11T04:00:00.000

Modified: 2024-11-20T23:41:18.557

Link: CVE-2002-1439

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-08-13T00:00:00", "descriptions": [{"lang": "en", "value": "Unknown vulnerability related to stack corruption in the TGA daemon for HP-UX 11.04 (VVOS) Virtualvault 4.0, 4.5, and 4.6 may allow attackers to obtain access to system files."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2003-03-26T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "HPSBUX0208-211", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0050.html"}, {"name": "hp-vvos-tga-corruption(9846)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/9846.php"}, {"name": "5459", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/5459"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-1439", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unknown vulnerability related to stack corruption in the TGA daemon for HP-UX 11.04 (VVOS) Virtualvault 4.0, 4.5, and 4.6 may allow attackers to obtain access to system files."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "HPSBUX0208-211", "refsource": "HP", "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0050.html"}, {"name": "hp-vvos-tga-corruption(9846)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/9846.php"}, {"name": "5459", "refsource": "BID", "url": "http://www.securityfocus.com/bid/5459"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T03:26:28.299Z"}, "title": "CVE Program Container", "references": [{"name": "HPSBUX0208-211", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0050.html"}, {"name": "hp-vvos-tga-corruption(9846)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/9846.php"}, {"name": "5459", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/5459"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-1439", "datePublished": "2003-03-18T05:00:00", "dateReserved": "2003-02-05T00:00:00", "dateUpdated": "2024-08-08T03:26:28.299Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hp:virtualvault:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "7179CB7C-CD63-421E-AD9E-0422020D7963", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:virtualvault:4.5:*:*:*:*:*:*:*", "matchCriteriaId": "2609CA23-B892-428D-93D1-D210B8D5741D", "vulnerable": true}, {"criteria": "cpe:2.3:a:hp:virtualvault:4.6:*:*:*:*:*:*:*", "matchCriteriaId": "129075F9-F03E-4298-8515-5A046816C7C8", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hp:vvos:11.04:*:*:*:*:*:*:*", "matchCriteriaId": "1D462D6F-EB68-4E31-87FD-D918F5DEF3FB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unknown vulnerability related to stack corruption in the TGA daemon for HP-UX 11.04 (VVOS) Virtualvault 4.0, 4.5, and 4.6 may allow attackers to obtain access to system files."}, {"lang": "es", "value": "Vulnerabilidad desconocida relacionada con la corrupci\u00f3n del stack en el demonio TGA para HP-UX 11.04 (WOS) Virtualvault 4.0, 4.5, y 4.6 permite que atacantes tengan acceso al sistema de ficheros."}], "id": "CVE-2002-1439", "lastModified": "2024-11-20T23:41:18.557", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-04-11T04:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0050.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.iss.net/security_center/static/9846.php"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/5459"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://archives.neohapsis.com/archives/hp/2002-q3/0050.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.iss.net/security_center/static/9846.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/5459"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}