Vulnerability CVE-2003-0724


Published: 2003-10-20   Modified: 2012-02-12

Description:
ssh on HP Tru64 UNIX 5.1B and 5.1A does not properly handle RSA signatures when digital certificates and RSA keys are used, which could allow local and remote attackers to gain privileges.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Compaq -> Tru64 

 References:
http://www.securityfocus.com/bid/8492
http://www.securityfocus.com/advisories/5736

Copyright 2022, cxsecurity.com

 

Back to Top