OpenVMS Multiple Denial of Service Vulnerabilities

Bugtraq ID:	25939
Class:	Unknown
CVE:	CVE-2007-5242 CVE-2007-5241
Remote:	Yes
Local:	Yes
Published:	Oct 03 2007 12:00AM
Updated:	Jul 06 2016 02:17PM
Credit:	This vulnerability was disclosed by the vendor.
Vulnerable:	HP OpenVMS 8.3.Alpha HP OpenVMS 8.3 Integrity
Not Vulnerable:

OpenVMS Multiple Denial of Service Vulnerabilities

OpenVMS is prone to multiple local denial-of-service vulnerabilities. A local attacker can exploit these issues to crash affected computers, denying service to legitimate users.

These issues affect OpenVMS ALPHA V8.3 and OpenVMS for Integrity Servers V8.3.

OpenVMS Multiple Denial of Service Vulnerabilities

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

OpenVMS Multiple Denial of Service Vulnerabilities

Solution:
The vendor has released fixes to address this issue. Please see the references for more information.


HP OpenVMS 8.3 Integrity

• HP VMS83I_LAN-V0600
  ftp://ftp.itrc.hp.com/openvms_patches/i64/V8.3/VMS83I_LAN-V0600.ZIPEXE

HP OpenVMS 8.3.Alpha

• HP VMS83A_LAN-V0200
  ftp://ftp.itrc.hp.com/openvms_patches/alpha/V8.3/VMS83A_LAN-V0200.ZIPE XE

OpenVMS Multiple Denial of Service Vulnerabilities

References:

• OpenVMS Home Page (HP)
  
• VMS83A_LAN-V0200 (HP)
  
• VMS83I_LAN-V0600 (HP)