CVE-ID

CVE-1999-0333

• Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Description
HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can gain root access via a symlink attack.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
  • RSI:RSI.0009.09-08-98.HP-UX.OMNIBACK
  • HP:HPSBUX9810-085
  • XF:omniback-remote
Date Entry Created
19990607 Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Modified (19990925-01)
Votes (Legacy)
ACCEPT(2) Baker, Frech
MODIFY(1) Prosser
RECAST(1) Christey
Comments (Legacy)
 Prosser> additional source
   HP Security Bulletin 85
   http://us-support.external.hp.com
   http://europe-support.external.hp.com
 Christey> Two separate bugs, so SF-LOC says this candidate should be
   split
 Christey> ADDREF CIAC:J-007
   URL:http://ciac.llnl.gov/ciac/bulletins/j-007.shtml

Proposed (Legacy)
19990623
This is an entry on the CVE list, which standardizes names for security problems.