Skip to main content

CVE-2004-0952

Severity Medium
Score 6.4/10

Summary

HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote attackers to modify data or cause disk consumption.

  • LOW
  • NETWORK
  • NONE
  • PARTIAL
  • NONE
  • PARTIAL

References

Advisory Timeline

  • Published