Vulnerability Note VU#13217
Problem with HP r-cmnds
Overview
A problem existed with HP versions of the r-commands (remshd, rexecd, rlogin, rlogind, remsh, rcp, rexec, rdist) in use circa December, 1998.
Description
See HEWLETT-PACKARD COMPANY SECURITY BULLETIN: #00090, (registration required) 07 December 1998 for a description of the problem. No other information is available. Quoting from that bulletin: Various HP-UX remote network commands (r-cmnds) in the fileset InternetSrvcs.INETSVCS-RUN have been enhanced. These include remshd(1M), rexecd(1M), rlogind(1M), rlogin(1), remsh(1), rcp(1), rexec(1), and rdist(1). All of these commands have been bundled into one convenient patch to address various operational and security defects noted the recent past. |
Impact
The complete impact of this vulnerability is unknown. |
Solution
Install a patch as described in the bulletin, or upgrade to a later version. |
Systems Affected (Learn More)
| Vendor | Status | Date Notified | Date Updated |
|---|---|---|---|
| Hewlett Packard | Affected | - | 14 Dec 2001 |
CVSS Metrics (Learn More)
| Group | Score | Vector |
|---|---|---|
| Base | N/A | N/A |
| Temporal | N/A | N/A |
| Environmental | N/A | N/A |
References
Credit
This document was written by Shawn V Hernan.
Other Information
- CVE IDs: Unknown
- Date Public: 07 Dec 99
- Date First Published: 14 Dec 2001
- Date Last Updated: 14 Dec 2001
- Severity Metric: 0.42
- Document Revision: 6
Feedback
If you have feedback, comments, or additional information about this vulnerability, please send us email.
View Notes By
Report a Vulnerability
Please use the Vulnerability Reporting Form to report a vulnerability. Alternatively, you can send us email. Be sure to read our vulnerability disclosure policy.