CVE-2010-1973 (GCVE-0-2010-1973)
Vulnerability from cvelistv5 – Published: 2010-07-22 01:00 – Updated: 2024-09-16 16:12
VLAI?
Summary
Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T02:17:14.377Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "HPSBOV02539",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2"
},
{
"name": "1024190",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1024190"
},
{
"name": "SSRT090267",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2010-07-22T01:00:00Z",
"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"shortName": "hp"
},
"references": [
{
"name": "HPSBOV02539",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2"
},
{
"name": "1024190",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1024190"
},
{
"name": "SSRT090267",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "hp-security-alert@hp.com",
"ID": "CVE-2010-1973",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "HPSBOV02539",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2"
},
{
"name": "1024190",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1024190"
},
{
"name": "SSRT090267",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
"assignerShortName": "hp",
"cveId": "CVE-2010-1973",
"datePublished": "2010-07-22T01:00:00Z",
"dateReserved": "2010-05-19T00:00:00Z",
"dateUpdated": "2024-09-16T16:12:34.591Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"405AB822-18C1-4670-A356-821026BD06AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA00EF35-2B02-4DB6-90A9-0C13F3F7FE1A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:7.2-1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FDC9DC1B-6384-4410-93FA-8F1052C89EDC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:7.2-1h1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FC1D2D6-9724-48E4-8C37-0891EC46885E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:7.2-2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E7335396-4B8F-4541-AA89-C18A6B6114C2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:7.2-6c2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6CC1C2B8-69F6-44A7-884B-F741CE38B112\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:7.3-1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9BB9C9E2-6A34-4718-8AA7-63B8C80FC024\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:8.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"643999CE-B5A0-4F72-AE11-8811701A296D\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:a:hp:openvms:8.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C447F682-D584-4704-8195-21ABE097CC66\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:hp:openvms:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"7.3\", \"matchCriteriaId\": \"F3986B0C-FC2C-4756-9F34-11E732042251\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:hp:openvms:7.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"077BDB9B-C116-452D-8133-8180E06F546F\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:8.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"643999CE-B5A0-4F72-AE11-8811701A296D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:8.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C447F682-D584-4704-8195-21ABE097CC66\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hp:openvms:8.3-1h1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61024D8E-7979-412B-BE47-C3BD83737A14\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:hp:openvms:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"7.3-2\", \"matchCriteriaId\": \"3C82B103-F26D-44D2-BBA2-CD9FDE5140CC\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad no especificada en Auditing subsystem de HP OpenVMS v8.3, 8.2, 7.3-2 y anteriores en la plataforma ALPHA y 8.3-1H1, 8.3, 8.2-1 y anteriores en la plataforma Itanium; permite a usuarios locales ganar privilegios u obtener informaci\\u00f3n sensible a trav\\u00e9s de vectores desconocidos.\"}]",
"evaluatorComment": "Per: http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\r\n\r\n\u0027impacted versions are listed.\r\nHP OpenVMS ALPHA v 8.3, v 8.2, v 7.3-2 and earlier\r\nHP OpenVMS Itanium v 8.3-1H1, v 8.3, v 8.2-1 and earlier\u0027",
"evaluatorSolution": "Per: http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\r\n\r\n\u0027HP has made the following patch kits available to resolve the vulnerability.\r\nPatch kit information and installation instructions are provided with each kit as noted below . The patch kits and installation instructions are available from the following location using anonymous ftp:\r\n\r\nftp://ftp.itrc.hp.com/openvms_patches\r\n",
"id": "CVE-2010-1973",
"lastModified": "2024-11-21T01:15:36.737",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:S/C:C/I:C/A:C\", \"baseScore\": 6.8, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.1, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2010-07-22T05:43:06.140",
"references": "[{\"url\": \"http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\", \"source\": \"hp-security-alert@hp.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\", \"source\": \"hp-security-alert@hp.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1024190\", \"source\": \"hp-security-alert@hp.com\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1024190\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "hp-security-alert@hp.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2010-1973\",\"sourceIdentifier\":\"hp-security-alert@hp.com\",\"published\":\"2010-07-22T05:43:06.140\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en Auditing subsystem de HP OpenVMS v8.3, 8.2, 7.3-2 y anteriores en la plataforma ALPHA y 8.3-1H1, 8.3, 8.2-1 y anteriores en la plataforma Itanium; permite a usuarios locales ganar privilegios u obtener informaci\u00f3n sensible a trav\u00e9s de vectores desconocidos.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:S/C:C/I:C/A:C\",\"baseScore\":6.8,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.1,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"405AB822-18C1-4670-A356-821026BD06AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA00EF35-2B02-4DB6-90A9-0C13F3F7FE1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:7.2-1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDC9DC1B-6384-4410-93FA-8F1052C89EDC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:7.2-1h1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FC1D2D6-9724-48E4-8C37-0891EC46885E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:7.2-2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7335396-4B8F-4541-AA89-C18A6B6114C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:7.2-6c2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6CC1C2B8-69F6-44A7-884B-F741CE38B112\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:7.3-1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BB9C9E2-6A34-4718-8AA7-63B8C80FC024\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"643999CE-B5A0-4F72-AE11-8811701A296D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:hp:openvms:8.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C447F682-D584-4704-8195-21ABE097CC66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:hp:openvms:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"7.3\",\"matchCriteriaId\":\"F3986B0C-FC2C-4756-9F34-11E732042251\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:hp:openvms:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"077BDB9B-C116-452D-8133-8180E06F546F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"643999CE-B5A0-4F72-AE11-8811701A296D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:8.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C447F682-D584-4704-8195-21ABE097CC66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hp:openvms:8.3-1h1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61024D8E-7979-412B-BE47-C3BD83737A14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:hp:openvms:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"7.3-2\",\"matchCriteriaId\":\"3C82B103-F26D-44D2-BBA2-CD9FDE5140CC\"}]}]}],\"references\":[{\"url\":\"http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\",\"source\":\"hp-security-alert@hp.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\",\"source\":\"hp-security-alert@hp.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1024190\",\"source\":\"hp-security-alert@hp.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1024190\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorComment\":\"Per: http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\\r\\n\\r\\n\u0027impacted versions are listed.\\r\\nHP OpenVMS ALPHA v 8.3, v 8.2, v 7.3-2 and earlier\\r\\nHP OpenVMS Itanium v 8.3-1H1, v 8.3, v 8.2-1 and earlier\u0027\",\"evaluatorSolution\":\"Per: http://marc.info/?l=bugtraq\u0026m=127905660900687\u0026w=2\\r\\n\\r\\n\u0027HP has made the following patch kits available to resolve the vulnerability.\\r\\nPatch kit information and installation instructions are provided with each kit as noted below . The patch kits and installation instructions are available from the following location using anonymous ftp:\\r\\n\\r\\nftp://ftp.itrc.hp.com/openvms_patches\\r\\n\"}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…