CVE-2001-0845

Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or Alpha 6.2, allows local users to gain access to unauthorized resources.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml	Patch Vendor Advisory
http://www.securityfocus.com/bid/3492
https://exchange.xforce.ibmcloud.com/vulnerabilities/7425

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:dec:dec_openvms:6.2_vax:::::::*
	cpe:2.3:a:dec:dec_openvms:7.1_vax:::::::*
	cpe:2.3:a:dec:dec_openvms:7.2_vax:::::::*
	cpe:2.3:a:dec:dec_openvms:7.3_vax:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:6.2:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:7.1.2:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:7.2.1h1:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:7.2.2:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:7.3:::::::*
	cpe:2.3:a:dec:sevms:6.2:::::::*
	cpe:2.3:a:dec:sevms_alpha:6.2:::::::*

History

No history.

Information

Published : 2001-12-06 05:00

Updated : 2017-12-19 02:29

NVD link : CVE-2001-0845

Mitre link : CVE-2001-0845

CVE.ORG link : CVE-2001-0845

JSON object : View

Products Affected

dec

dec_openvms
sevms
dec_openvms_alpha
sevms_alpha

CWE

NVD-CWE-Other

{"id": "CVE-2001-0845", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2001-12-06T05:00:00.000", "references": [{"url": "http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/3492", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7425", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or Alpha 6.2, allows local users to gain access to unauthorized resources."}], "lastModified": "2017-12-19T02:29:27.737", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:dec:dec_openvms:6.2_vax:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "834D638A-30FD-4F37-A876-AFC1DE3D2C22"}, {"criteria": "cpe:2.3:a:dec:dec_openvms:7.1_vax:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE57DEE5-0F14-41EC-9242-631908CB8EBF"}, {"criteria": "cpe:2.3:a:dec:dec_openvms:7.2_vax:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53E60EE4-22AE-4959-8C00-B9D621BE3A4B"}, {"criteria": "cpe:2.3:a:dec:dec_openvms:7.3_vax:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E189EB73-4B47-4DD7-9A1A-BBC4F70F92A8"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4DD6B1C-F18B-4953-A9D5-F5627476D490"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:7.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76044FE0-8BDA-4EAF-98C5-1BF33562CC50"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:7.2.1h1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3332AE9E-C93B-4061-98CF-14C75F1163CF"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "383E31DC-E001-4598-BFA6-BBD097274312"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:7.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8F1BA1B-9AFE-45C4-AEC0-7AE30A97A7C7"}, {"criteria": "cpe:2.3:a:dec:sevms:6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "248EF7BE-F23C-4339-AA96-5367D10BB95F"}, {"criteria": "cpe:2.3:a:dec:sevms_alpha:6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A54891C-1729-4FCD-BD11-99366C245432"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}