Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3946

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2008-3946
Last Modified 24 Sep 2008 01:41:11
Published 05 Sep 2008 12:08:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-3946

Summary

The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary files via a link corresponding to a (1) .plan or (2) .project file.

Vulnerable Systems

Application

  • Hp Openvms 5


References

XF - hptcpip-openvms-finger-info-disclosure(45135)

MISC - http://deathrow.vistech.net/DEFCON16/VMS.PDF


Last Updated: 27 May 2016 10:48:20