CVE-1999-1136

Current Description

Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Response Center Predictive systems.

Basic Data

PublishedJuly 30, 1998
Last ModifiedOctober 10, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-200
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS 2 - Access VectorLOCAL
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score4.6
SeverityMEDIUM
Exploitability Score3.9
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3OSHpMpe Ix5.0*******
    2.3OSHpMpe Ix********5.5
  • OR - Configuration 2
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3OSHpHp-ux********11.00

Vulnerable Software List

VendorProductVersions
Hp Mpe Ix *, 5.0
Hp Hp-ux *

References

NameSourceURLTags
HPSBMP9807-005http://cert.ip-plus.net/bulletin-archive/msg00040.htmlHPPatch Vendor Advisory
19980729 HP-UX Predictive & Netscape SSL Vulnerabilitieshttp://marc.info/?l=bugtraq&m=90221104526177&w=2BUGTRAQ
I-081http://www.ciac.org/ciac/bulletins/i-081.shtmlCIACPatch Vendor Advisory
HPSBUX9807-081http://www.codetalker.com/advisories/vendor/hp/hpsbux9807-081.htmlHP
mpeix-predictive(1413)https://exchange.xforce.ibmcloud.com/vulnerabilities/1413XF