Computer Security
[EN] securityvulns.ru no-pyccku


OpenVMS multiple security vulnerabilities
Published:06.01.2007
Source:
SecurityVulns ID:7010
Type:local
Threat Level:
5/10
Description:HP DecNet-Plus undisclosured vulnerability, cleartext password in log files.
Affected:HP : OpenVMS 8.2
CVE:CVE-2007-0139 (Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain "unintended privileged access to data and system resources" via unspecified vectors, related to (1) [SYSEXE]CTF$UI.EXE, (2) [SYSMSG]CTF$MESSAGES.EXE, (3) [SYSHLP]CTF$HELP.HLB, and (4) [SYSMGR]CTF$STARTUP.COM.)
Original documentdocumentSECUNIA, [SA23632] OpenVMS Audit Logfile Password Exposure (06.01.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod