CVE-2004-0952
Description
HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote attackers to modify data or cause disk consumption.
Risk Information
Base Score
9.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS Score
Exploitation Probability
1.653
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities affected in hp-ux 11.00 | NCM |
| Multiple Vulnerabilities affected in hp-ux 11.23-ia64_64-bit | NCM |
| Multiple Vulnerabilities affected in hp-ux 11.11 | NCM |
| Multiple Vulnerabilities affected in hp-ux 11.22 | NCM |
| CVE-2004-0952 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234