CVE-2000-0095 — HP Hp-ux vulnerability

5 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

0.5%

top 32.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Hp-ux

Timeline

PublishedJan 24

Latest updateApr 30

Description

The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small packets, allowing remote attackers to cause the system to be used as a packet amplifier.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDhp/hp-ux10.30, 11.00+1

🔴Vulnerability Details

GHSA

GHSA-x4q4-xrjj-86w6: The PMTU discovery procedure used by HP-UX 10↗2022-04-30

▶

CVEList

CVE-2000-0095: The PMTU discovery procedure used by HP-UX 10↗2000-04-18

▶

💥Exploits & PoCs

Exploit-DB

BSCW 3.4/4.0 - Insecure Default Installation↗2002-01-03

▶

Exploit-DB

SunOS 5.7 Catman - Local Insecure tmp Symlink Clobber↗2000-12-20

▶