Page 2 of 13 results (0.010 seconds)

CVSS: 2.1EPSS: 0%CPEs: 5EXPL: 0

Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive information via unknown vectors. Vulnerabilidad no especificada en la característica de auditoría de HP OpenVMS en los servidores OpenVMS ALPHA v7.3-2, v8.2, y v8.3, y OpenVMS for Integrity v8,3 y v8.3-1H1; permite a usuarios locales obtener información sensible a través de vectores desconocidos. • ftp://ftp.itrc.hp.com/openvms_patches/alpha/V7.3-2/VMS732_SYS_MUP-V1900.txt ftp://ftp.itrc.hp.com/openvms_patches/alpha/V8.2/VMS82A_SYS_MUP-V1700.txt ftp://ftp.itrc.hp.com/openvms_patches/alpha/V8.3/VMS83A_SYS_MUP-V1700.txt ftp://ftp.itrc.hp.com/openvms_patches/i64/V8.3-1H1/VMS831H1I_SYS_MUP-V1100.txt ftp://ftp.itrc.hp.com/openvms_patches/i64/V8.3/VMS83I_SYS_MUP-V1400.txt http://secunia.com/advisories/40361 http://www.securityfocus.com/bid/41186 http • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 0

Stack-based buffer overflow in SMGSHR.EXE in OpenVMS for Integrity Servers 8.2-1, 8.3, and 8.3-1H1 and OpenVMS ALPHA 7.3-2, 8.2, and 8.3 allows local users to cause a denial of service (crash) or gain privileges via unspecified vectors. Desbordamiento de búfer basado en pila en el archivo SMGSHR.EXE en OpenVMS para Integrity Servers 8.2-1, 8.3, y 8.3-1H1 y OpenVMS ALPHA 7.3-2, 8.2, y 8.3 que permite a los usuarios locales causar una denegación de servicios (caída) o aumentar privilegios a través de vectores no especificados. • http://mail.openvms.org:8100/Lists/alerts/Message/832.html http://mail.openvms.org:8100/Lists/alerts/Message/833.html http://mail.openvms.org:8100/Lists/alerts/Message/834.html http://mail.openvms.org:8100/Lists/alerts/Message/835.html http://mail.openvms.org:8100/Lists/alerts/Message/836.html http://mail.openvms.org:8100/Lists/alerts/Message/837.html http://secunia.com/advisories/31581 http://www.vupen.com/english/advisories/2008/2439 https://exchange.xforce.ibmcloud. • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0

Buffer overflow in NET$CSMACD.EXE in HP OpenVMS 8.3 and earlier allows local users to cause a denial of service (machine crash) via the "MCR MCL SHOW CSMA-CD Port * All" command, which overwrites a Non-Paged Pool Packet. Desbordamiento de búfer en NET$CSMACD.EXE en HP OpenVMS 8.3 y anteriores permite a usuarios locales provocar denegación de servicio (caida de maquina) a través de comando "MCR MCL SHOW CSMA-CD Port * All", el cual sobrescribe Non-Paged Pool Packet. • http://mail.openvms.org:8100/Lists/alerts/Message/582.html http://mail.openvms.org:8100/Lists/alerts/Message/583.html http://osvdb.org/37811 http://secunia.com/advisories/27084 http://www.securityfocus.com/bid/25939 http://www.vupen.com/english/advisories/2007/3382 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 4.3EPSS: 2%CPEs: 2EXPL: 0

Unspecified vulnerability in (1) SYS$EI1000.EXE and (2) SYS$EI1000_MON.EXE in HP OpenVMS 8.3 and earlier allows remote attackers to cause a denial of service (machine crash) via an "oversize" packet, which is not properly discarded if "the device has no remaining buffers after receipt of the first buffer segment." Vulnerabilidad no especificada en (1) SYS$EI1000.EXE y (2) SYS$EI1000_MON.EXE en HP OpenVMS 8.3 y anteriores permite a atacantes remotos provocar denegación de servicio (caida de maquina) a través de un paquete "sobredimensionado", el cual no es descartado adecuadamente si "el dispositivo no tiene búfers restantes después de recibir el primer segmento de búfer". • http://mail.openvms.org:8100/Lists/alerts/Message/582.html http://mail.openvms.org:8100/Lists/alerts/Message/583.html http://osvdb.org/37812 http://osvdb.org/37813 http://secunia.com/advisories/27084 http://www.securityfocus.com/bid/25939 http://www.vupen.com/english/advisories/2007/3382 •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain "unintended privileged access to data and system resources" via unspecified vectors, related to (1) [SYSEXE]CTF$UI.EXE, (2) [SYSMSG]CTF$MESSAGES.EXE, (3) [SYSHLP]CTF$HELP.HLB, and (4) [SYSMGR]CTF$STARTUP.COM. Vulnerabilidad no especificada en la característica DECnet-Plus 7.3-2 en DECnet/OSI 7.3-2 para OpenVMS ALPHA, y la caracteristica DECnet-Plus 7.3 en DECnet/OSI 7.3 para OpenVMS VAX, permite a atacantes remotos obtener "acceso privilegiado no previsto a los datos y recursos del sistema" a través de vectores no especificados, relación con 1) [SYSEXE]CTF$UI.EXE, (2) [SYSMSG]CTF$MESSAGES.EXE, (3) [SYSHLP]CTF$HELP.HLB, y (4) [SYSMGR]CTF$STARTUP.COM. • ftp://ftp.itrc.hp.com/openvms_patches/alpha/V7.3-2/AXP_DNVOSIMUP01-V0703-2.txt ftp://ftp.itrc.hp.com/openvms_patches/vax/V7.3/VAX_DNVOSIMUP01-V0703.txt http://osvdb.org/32583 http://osvdb.org/32584 http://osvdb.org/32585 http://osvdb.org/32586 http://secunia.com/advisories/23636 http://www.vupen.com/english/advisories/2007/0063 •