CVE-2002-2138 — HP Advanced Server 9000 vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 25.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Advanced Server 9000 HP Hp-ux

Timeline

PublishedDec 31

Latest updateApr 30

Description

RFC-NETBIOS in HP Advanced Server/9000 B.04.05 through B.04.09, when running HP-UX 11.00 or 11.11, allows remote attackers to cause a denial of service (panic) via a malformed UDP packet on port 139.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDhp/advanced5 versions+4

▶NVDhp/hp-ux11.00, 11.11, 11.4+2

Patches

Patch: online.securityfocus.com ↗Patch: www.iss.net ↗Patch: online.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-hr99-xr7v-22rw: RFC-NETBIOS in HP Advanced Server/9000 B↗2022-04-30

▶

CVEList

CVE-2002-2138: RFC-NETBIOS in HP Advanced Server/9000 B↗2005-11-16

▶