CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 0CVE-2008-4052
https://notcve.org/view.php?id=CVE-2008-4052
Stack-based buffer overflow in SMGSHR.EXE in OpenVMS for Integrity Servers 8.2-1, 8.3, and 8.3-1H1 and OpenVMS ALPHA 7.3-2, 8.2, and 8.3 allows local users to cause a denial of service (crash) or gain privileges via unspecified vectors. Desbordamiento de búfer basado en pila en el archivo SMGSHR.EXE en OpenVMS para Integrity Servers 8.2-1, 8.3, y 8.3-1H1 y OpenVMS ALPHA 7.3-2, 8.2, y 8.3 que permite a los usuarios locales causar una denegación de servicios (caída) o aumentar privilegios a través de vectores no especificados. • http://mail.openvms.org:8100/Lists/alerts/Message/832.html http://mail.openvms.org:8100/Lists/alerts/Message/833.html http://mail.openvms.org:8100/Lists/alerts/Message/834.html http://mail.openvms.org:8100/Lists/alerts/Message/835.html http://mail.openvms.org:8100/Lists/alerts/Message/836.html http://mail.openvms.org:8100/Lists/alerts/Message/837.html http://secunia.com/advisories/31581 http://www.vupen.com/english/advisories/2008/2439 https://exchange.xforce.ibmcloud. • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2008-3946
https://notcve.org/view.php?id=CVE-2008-3946
The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary files via a link corresponding to a (1) .plan or (2) .project file. El cliente finger en HP TCP/IP Services para OpenVMS 5.x permite a usuarios locales leer arbitrariamente archivos a través de un enlace correspondiente a un archivo (1) .plan o (2) .project . • http://deathrow.vistech.net/DEFCON16/VMS.PDF https://exchange.xforce.ibmcloud.com/vulnerabilities/45135 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2008-3947
https://notcve.org/view.php?id=CVE-2008-3947
DCL (aka the CLI) in OpenVMS Alpha 8.3 allows local users to gain privileges via a long command line. DCL (también conocido como CLI) en OpenVMS Alpha 8.3 permite a usuarios locales obtener provilegios mediante una línea de comandos larga. • http://deathrow.vistech.net/DEFCON16/VMS.PDF http://www.securitytracker.com/id?1020827 https://exchange.xforce.ibmcloud.com/vulnerabilities/45047 • CWE-20: Improper Input Validation •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2008-3940
https://notcve.org/view.php?id=CVE-2008-3940
Format string vulnerability in the finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to gain privileges via format string specifiers in a (1) .plan or (2) .project file. Vulnerabilidad de formato de cadena del cliente finger en HP TCP/IP Services para OpenVMS 5.x, permite a usuarios locales obtener privilegios mediante especificadores de cadena de formato en un archivo 1) .plan or (2) .project . • http://deathrow.vistech.net/DEFCON16/VMS.PDF http://secunia.com/advisories/31587 http://www.securityfocus.com/bid/30948 http://www.vupen.com/english/advisories/2008/2463 https://exchange.xforce.ibmcloud.com/vulnerabilities/44752 • CWE-134: Use of Externally-Controlled Format String •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2007-5241
https://notcve.org/view.php?id=CVE-2007-5241
Buffer overflow in NET$CSMACD.EXE in HP OpenVMS 8.3 and earlier allows local users to cause a denial of service (machine crash) via the "MCR MCL SHOW CSMA-CD Port * All" command, which overwrites a Non-Paged Pool Packet. Desbordamiento de búfer en NET$CSMACD.EXE en HP OpenVMS 8.3 y anteriores permite a usuarios locales provocar denegación de servicio (caida de maquina) a través de comando "MCR MCL SHOW CSMA-CD Port * All", el cual sobrescribe Non-Paged Pool Packet. • http://mail.openvms.org:8100/Lists/alerts/Message/582.html http://mail.openvms.org:8100/Lists/alerts/Message/583.html http://osvdb.org/37811 http://secunia.com/advisories/27084 http://www.securityfocus.com/bid/25939 http://www.vupen.com/english/advisories/2007/3382 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •