CVE-2001-0845

Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or Alpha 6.2, allows local users to gain access to unauthorized resources.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml	Patch Vendor Advisory
http://www.securityfocus.com/bid/3492
https://exchange.xforce.ibmcloud.com/vulnerabilities/7425
http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml	Patch Vendor Advisory
http://www.securityfocus.com/bid/3492
https://exchange.xforce.ibmcloud.com/vulnerabilities/7425

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:dec:dec_openvms:6.2_vax:::::::*
	cpe:2.3:a:dec:dec_openvms:7.1_vax:::::::*
	cpe:2.3:a:dec:dec_openvms:7.2_vax:::::::*
	cpe:2.3:a:dec:dec_openvms:7.3_vax:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:6.2:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:7.1.2:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:7.2.1h1:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:7.2.2:::::::*
	cpe:2.3:a:dec:dec_openvms_alpha:7.3:::::::*
	cpe:2.3:a:dec:sevms:6.2:::::::*
	cpe:2.3:a:dec:sevms_alpha:6.2:::::::*

History

20 Nov 2024, 23:36

Type	Values Removed	Values Added
References	~~() http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml - Patch, Vendor Advisory~~	() http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml - Patch, Vendor Advisory
References	~~() http://www.securityfocus.com/bid/3492 -~~	() http://www.securityfocus.com/bid/3492 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/7425 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/7425 -

Information

Published : 2001-12-06 05:00

Updated : 2024-11-20 23:36

NVD link : CVE-2001-0845

Mitre link : CVE-2001-0845

CVE.ORG link : CVE-2001-0845

JSON object : View

Products Affected

dec

sevms_alpha
sevms
dec_openvms_alpha
dec_openvms

CWE

NVD-CWE-Other

{"id": "CVE-2001-0845", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2001-12-06T05:00:00.000", "references": [{"url": "http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/3492", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7425", "source": "cve@mitre.org"}, {"url": "http://ftp.support.compaq.com/patches/.new/html/SSRT0738.shtml", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/3492", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7425", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Vulnerability in DECwindows Motif Server on OpenVMS VAX or Alpha 6.2 through 7.3, and SEVMS VAX or Alpha 6.2, allows local users to gain access to unauthorized resources."}], "lastModified": "2024-11-20T23:36:16.467", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:dec:dec_openvms:6.2_vax:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "834D638A-30FD-4F37-A876-AFC1DE3D2C22"}, {"criteria": "cpe:2.3:a:dec:dec_openvms:7.1_vax:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE57DEE5-0F14-41EC-9242-631908CB8EBF"}, {"criteria": "cpe:2.3:a:dec:dec_openvms:7.2_vax:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53E60EE4-22AE-4959-8C00-B9D621BE3A4B"}, {"criteria": "cpe:2.3:a:dec:dec_openvms:7.3_vax:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E189EB73-4B47-4DD7-9A1A-BBC4F70F92A8"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4DD6B1C-F18B-4953-A9D5-F5627476D490"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:7.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76044FE0-8BDA-4EAF-98C5-1BF33562CC50"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:7.2.1h1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3332AE9E-C93B-4061-98CF-14C75F1163CF"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "383E31DC-E001-4598-BFA6-BBD097274312"}, {"criteria": "cpe:2.3:a:dec:dec_openvms_alpha:7.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8F1BA1B-9AFE-45C4-AEC0-7AE30A97A7C7"}, {"criteria": "cpe:2.3:a:dec:sevms:6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "248EF7BE-F23C-4339-AA96-5367D10BB95F"}, {"criteria": "cpe:2.3:a:dec:sevms_alpha:6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A54891C-1729-4FCD-BD11-99366C245432"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}