EUVD-2008-5394

Malware in sbrugna...

CVE-2008-5417

HP DECnet-Plus 8.3 before ECO03 for OpenVMS on the Alpha platform uses world-writable permissions for the OSIT$NAMES logical name table, which allows local users to bypass intended access restrictions and modify this table via the 1 SYS$CRELNM and 2 SYS$DELLNM system services...

HP DECnet-Plus OpenVMS 'OSIT$NAMES'绕过安全限制漏洞

BUGTRAQ ID: 32711 HP DECnet-Plus一种在数据系统之间提供通信功能的软硬件产品。 HP DECnet-Plus OpenVMS实现上存在漏洞，远程攻击者可能利用此绕过某些安全限制非授权修改'OSIT$NAMES'表。 HP DECnet-Plus for OpenVMS VAX 7.3 HP DECnet-Plus for OpenVMS ALPHA 7.3-2 HP -- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://itrc.hp.com...

CVE-2008-5417

HP DECnet-Plus 8.3 before ECO03 for OpenVMS on the Alpha platform uses world-writable permissions for the OSIT$NAMES logical name table, which allows local users to bypass intended access restrictions and modify this table via the 1 SYS$CRELNM and 2 SYS$DELLNM system services...

Design/Logic Flaw

HP DECnet-Plus 8.3 before ECO03 for OpenVMS on the Alpha platform uses world-writable permissions for the OSIT$NAMES logical name table, which allows local users to bypass intended access restrictions and modify this table via the 1 SYS$CRELNM and 2 SYS$DELLNM system services...

CVE-2008-5417

HP DECnet-Plus 8.3 before ECO03 for OpenVMS on the Alpha platform uses world-writable permissions for the OSIT$NAMES logical name table, which allows local users to bypass intended access restrictions and modify this table via the 1 SYS$CRELNM and 2 SYS$DELLNM system services...

OpenVMS multiple security vulnerabilities

HP DecNet-Plus undisclosured vulnerability, cleartext password in log files...