Summary
Detail | |||
---|---|---|---|
Vendor | Hp | First view | 2007-10-06 |
Product | Openvms | Last view | 2018-02-07 |
Version | 8.3 | Type | Os |
Update | - | ||
Edition | alpha | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:o:hp:openvms |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
7.8 | 2018-02-07 | CVE-2017-17482 | An issue was discovered in OpenVMS through V8.4-2L2 on Alpha and through V8.4-2L1 on IA64, and VAX/VMS 4.0 and later. A malformed DCL command table may result in a buffer overflow allowing a local privilege escalation when a non-privileged account enters a crafted command line. This bug is exploitable on VAX and Alpha and may cause a process crash on IA64. Software was affected regardless of whether it was directly shipped by VMS Software, Inc. (VSI), HPE, HP, Compaq, or Digital Equipment Corporation. |
5 | 2012-12-13 | CVE-2012-3277 | HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows remote attackers to cause a denial of service via unspecified vectors. |
4.3 | 2007-10-06 | CVE-2007-5242 | Unspecified vulnerability in (1) SYS$EI1000.EXE and (2) SYS$EI1000_MON.EXE in HP OpenVMS 8.3 and earlier allows remote attackers to cause a denial of service (machine crash) via an "oversize" packet, which is not properly discarded if "the device has no remaining buffers after receipt of the first buffer segment." |
5 | 2007-10-06 | CVE-2007-5241 | Buffer overflow in NET$CSMACD.EXE in HP OpenVMS 8.3 and earlier allows local users to cause a denial of service (machine crash) via the "MCR MCL SHOW CSMA-CD Port * All" command, which overwrites a Non-Paged Pool Packet. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (2) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
Open Source Vulnerability Database (OSVDB)
id | Description |
---|---|
37813 | OpenVMS SYS$EI1000_MON.EXE Oversized Packet Remote DoS |
37812 | OpenVMS SYS$EI1000.EXE Oversized Packet Remote DoS |
37811 | OpenVMS NET$CSMACD.EXE Crafted Command Local DoS |