Description
HP NonStop Server G06.29, when running Standard Security T6533G06 before T6533G06^ABK, does not properly evaluate access permissions to OSS directories when no optional ACL entry exists, which allows local users to read arbitrary files.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1017135
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/4301
Various Sources vendor-advisory
x_refsource_hp
http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00795238
Vendor Advisory third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/r-027.shtml
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29951
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/20824
Scores
EPSS
0.0004
EPSS Percentile
12.4%
Details
Status
published
Products (1)
hp/nonstop_server
g06.29
Published
Nov 04, 2006
Tracked Since
Feb 18, 2026