[原文]HP architected interface facility (AIF) as includes with MPE/iX 5.5 through 6.5 running on a HP3000 allows an attacker to gain additional privileges and gain access to databases via the AIF - AIFCHANGELOGON program.
This vulnerability was reported in an HP security bulletin.
HP MPE/iX 6.5
HP MPE/iX 6.0
HP MPE/iX 5.5
A vulnerability has been discovered in AIF for MPE/iX running on HP3000 systems. Due to a bug in the AIFCHANGELOGON program it may be possible for a malicious local user to access sensitive information and possibly elevate privileges.
Precise technical details regarding this vulnerability are not currently known. This BID will be updated as more information becomes available.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: firstname.lastname@example.org <mailto:email@example.com>.
HP has released an advisory for this issue and fixes have been made available. Information regarding how to obtain fixes is available in the attached advisory.