{ "id": "CVE-2010-0444", "sourceIdentifier": "hp-security-alert@hp.com", "published": "2010-02-09T19:30:00.500", "lastModified": "2024-11-21T01:12:13.940", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", "value": "HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors." }, { "lang": "es", "value": "HP Operations Agent v8.51, v8.52, v8.53, y v8.60 en Solaris v10 utiliza una contrase\u00f1a en blanco en la cuenta opc_op, lo que permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de vectores desconocidos." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "baseScore": 10.0, "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE" }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": true, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-255" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:hp:operations_agent:8.51:*:*:*:*:*:*:*", "matchCriteriaId": "8871FAEC-384E-4474-A3C1-36282C5F0B55" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:operations_agent:8.52:*:*:*:*:*:*:*", "matchCriteriaId": "DC9891AE-1111-4F33-80F0-67CC6752F99E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:hp:operations_agent:8.53:*:*:*:*:*:*:*", "matchCriteriaId": "5DCC7E2F-90D5-479F-939E-D4C49BB90A49" }, { "vulnerable": false, "criteria": "cpe:2.3:a:hp:operations_agent:8.60:*:*:*:*:*:*:*", "matchCriteriaId": "0A67A3D1-0F93-4FAA-A560-996634E6A77D" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*", "matchCriteriaId": "7FBA68F0-4577-46F5-A754-D365B6EFF872" }, { "vulnerable": false, "criteria": "cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*", "matchCriteriaId": "E79CFAA6-A08A-4C70-A3D9-B02C29A17FF2" } ] } ] } ], "references": [ { "url": "http://marc.info/?l=bugtraq&m=126566258722040&w=2", "source": "hp-security-alert@hp.com", "tags": [ "Vendor Advisory" ] }, { "url": "http://marc.info/?l=bugtraq&m=126566258722040&w=2", "source": "hp-security-alert@hp.com", "tags": [ "Vendor Advisory" ] }, { "url": "http://osvdb.org/62213", "source": "hp-security-alert@hp.com" }, { "url": "http://securitytracker.com/id?1023555", "source": "hp-security-alert@hp.com" }, { "url": "http://www.securityfocus.com/bid/38150", "source": "hp-security-alert@hp.com" }, { "url": "http://marc.info/?l=bugtraq&m=126566258722040&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ] }, { "url": "http://marc.info/?l=bugtraq&m=126566258722040&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ] }, { "url": "http://osvdb.org/62213", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "http://securitytracker.com/id?1023555", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "http://www.securityfocus.com/bid/38150", "source": "af854a3a-2127-422b-91ae-364da2661108" } ] }