FTP Command Validation Flaw in HP MPE/iX by Hewlett-Packard
CVE-2002-0610

Currently unrated

Key Information:

Vendor: HP
Status: Mpe Ix
Vendor: CVE Published:; 18 June 2002

Summary

The HP MPE/iX version 6.0 through 7.0 exhibits a vulnerability in the FTPSRVR component where it fails to properly validate certain FTP commands. This oversight can be exploited by attackers to escalate their privileges, potentially allowing unauthorized users to gain higher access levels. It is crucial for users of affected versions to apply security updates and mitigate risks associated with improper command validation.

References

http://online.securityfocus.com/advisories/4082

vendor-advisoryx_refsource_HP

http://www.kb.cert.org/vuls/id/551683

third-party-advisoryx_refsource_CERT-VN

http://www.securityfocus.com/bid/4652

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jun 18, 2002
Vulnerability Reserved
Jun 11, 2002