CVE-2012-3276

HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows local users to cause a denial of service via unspecified vectors.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03599086	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:hp:openvms:7.3-2:::::::*
	cpe:2.3:o:hp:openvms:8.3:::::::*
	cpe:2.3:o:hp:openvms:8.3-1h1:::::::*
	cpe:2.3:o:hp:openvms:8.4:::::::*

History

No history.

Information

Published : 2012-12-13 11:53

Updated : 2024-02-28 12:00

NVD link : CVE-2012-3276

Mitre link : CVE-2012-3276

CVE.ORG link : CVE-2012-3276

JSON object : View

Products Affected

hp

openvms

CWE

CWE-16

Configuration

{"id": "CVE-2012-3276", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-12-13T11:53:33.523", "references": [{"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03599086", "tags": ["Patch", "Vendor Advisory"], "source": "hp-security-alert@hp.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-16"}]}], "descriptions": [{"lang": "en", "value": "HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows local users to cause a denial of service via unspecified vectors."}, {"lang": "es", "value": "HP OpenVMS v8.3, v8.3-1H1, y v8.4 en la plataforma Itanium y v7.3-2, v8.2, v8.3 y v8.4 en la plataforma Alpha no implementa correctamente el inicio de sesi\u00f3n y el programa ACME_SERVER ACMELOGIN, lo que permite a usuarios locales provocar una denegaci\u00f3n de servicio a trav\u00e9s de vectores no especificados"}], "lastModified": "2019-10-09T23:05:21.670", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:openvms:7.3-2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "852A393C-CEDD-43F0-95BA-50D259C04843"}, {"criteria": "cpe:2.3:o:hp:openvms:8.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80652553-3CA0-4EF3-9B84-7A141FED1DAD"}, {"criteria": "cpe:2.3:o:hp:openvms:8.3-1h1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3AF9BE4F-E6A5-4833-BF97-EBCE1B6C42C8"}, {"criteria": "cpe:2.3:o:hp:openvms:8.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1AA2AB97-BD6C-4259-83C7-8850C445DEE2"}], "operator": "OR"}]}], "sourceIdentifier": "hp-security-alert@hp.com"}