HP DECNet-Plus For OpenVMS Unspecified Security Bypass Vulnerability

Bugtraq ID:	21888
Class:	Design Error
CVE:
Remote:	Yes
Local:	No
Published:	Jan 05 2007 12:00AM
Updated:	Jan 05 2007 10:16PM
Credit:	The vendor disclosed these issues.
Vulnerable:	HP DECnet-Plus for OpenVMS VAX 7.3 HP DECnet-Plus for OpenVMS ALPHA 7.3-2
Not Vulnerable:

HP DECNet-Plus For OpenVMS Unspecified Security Bypass Vulnerability

HP DECNet-Plus for OpenVMS is prone to an unspecified security-bypass vulnerability.

Successful exploits can allow attackers to bypass security restrictions to access sensitive data and system resources; other attacks may also be possible.

DECNet-Plus OpenVMS ALPHA version 7.3-2 and DECNet-Plus for OpenVMS VAX version 7.3 are vulnerable to this issue.

HP DECNet-Plus For OpenVMS Unspecified Security Bypass Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

HP DECNet-Plus For OpenVMS Unspecified Security Bypass Vulnerability

Solution:
The vendor has released fixes to address this issue. Please contact the vendor for information on how to obtain and apply this update.

HP DECNet-Plus For OpenVMS Unspecified Security Bypass Vulnerability

References:

• Welcome to Hewlett Packard (Hewlett Packard)
  
• AXP_DNVOSIMUP01-V0703-2 (HP)
  
• VAX_DNVOSIMUP01-V0703 (HP)