32 matches found
CVE-2008-3940
CVE-2008-3940 describes a format string vulnerability in the finger client of HP TCP/IP Services for OpenVMS 5.x. Local users can gain privileges by supplying crafted content in either the ".plan" or the ".project" file, exploiting format string specifiers. The vulnerability affects the finger cl...
[security bulletin] HPSBOV02278 SSRT071479 rev.1 - HP OpenVMS SSH Using TCP/IP Services for OpenVMS, Remote Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01414022 Version: 1 HPSBOV02278 SSRT071479 rev.1 - HP OpenVMS SSH Using TCP/IP Services for OpenVMS, Remote Unauthorized Access NOTICE: The information in this Security Bulletin should be acted...
CVE-2008-0704
Unspecified vulnerability in the SSH server in HP OpenVMS TCP/IP Services on OpenVMS on the Alpha platform with 5.4 before ECO 7, and on the Integrity and Alpha platforms with 5.5 before ECO 3 and 5.6 before ECO 2, allows remote attackers to obtain unspecified access via unknown vectors...
Code injection
Unspecified vulnerability in the SSH server in HP OpenVMS TCP/IP Services on OpenVMS on the Alpha platform with 5.4 before ECO 7, and on the Integrity and Alpha platforms with 5.5 before ECO 3 and 5.6 before ECO 2, allows remote attackers to obtain unspecified access via unknown vectors...
CVE-2008-0704
CVE-2008-0704 affects the SSH server in HP OpenVMS TCP/IP Services for OpenVMS on HP Alpha (5.4 before ECO7) and on Integrity/Alpha (5.5 before ECO3, 5.6 before ECO2). The vulnerability could permit remote unauthorized access via unspecified vectors. HP’s Security Bulletin HPSBOV02278 rev.1 lists...
Default configuration
The default configuration of the POP server in TCP/IP Services 5.6 for HP OpenVMS 8.3 generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid POP usernames...
Default configuration
The default configuration of the POP server in TCP/IP Services 5.6 for HP OpenVMS 8.3 does not log the source IP address or attempted username for login attempts, which might help remote attackers to avoid identification...
CVE-2007-3730
The default configuration of the POP server in TCP/IP Services 5.6 for HP OpenVMS 8.3 does not log the source IP address or attempted username for login attempts, which might help remote attackers to avoid identification...
CVE-2007-3730
The default configuration of the POP server in TCP/IP Services 5.6 for HP OpenVMS 8.3 does not log the source IP address or attempted username for login attempts, which might help remote attackers to avoid identification...
CVE-2007-3729
CVE-2007-3729 affects the POP server in TCP/IP Services 5.6 on HP OpenVMS 8.3. The default configuration causes the server to generate different responses based on whether a provided username is valid, allowing remote attackers to enumerate valid POP usernames via network interaction. The availab...
CVE-2007-3730
The CVE-2007-3730 issue affects HP OpenVMS TCP/IP Services 5.6 (POP server) where the default configuration fails to log the source IP address and attempted username for login attempts. This logging deficiency could help remote attackers remain anonymous or avoid identification when probing or at...
[security bulletin] SSRT2371 HP OpenVMS Potential POP server local vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SECURITY BULLETIN REVISION: 0 Title: SSRT2371 HP OpenVMS Potential POP server local vulnerability NOTICE: There are no restrictions for distribution of this Bulletin provided that it remains complete and intact. RELEASE DATE: September 2002 SEVERITY:...