Cybertrion Systems

Home About Photos Contact

[3/5] HP TCP/IP Services for OpenVMS SSH Server Vulnerability

March 28th, 2008 by
[3/5] HP TCP/IP Services for OpenVMS SSH Server Vulnerability

:A vulnerability has been reported in the HP TCP/IP services for OpenVMS, which can be exploited by malicious people to bypass certain security restrictions.The vulnerability is caused due to an unspecified error within the SSH server and can be exploited to gain unauthorized access to a vulnerable system.The vulnerability is reported in the following products:* HP OpenVMS on HP Alpha running TCP/IP Services for OpenVMS v5.4 prior to ECO 7* HP OpenVMS on HP Integrity and HP Alpha running TCP/IP Services for OpenVMS v5.5 prior to ECO 3* HP OpenVMS on HP Integrity and HP Alpha running TCP/IP Services for OpenVMS v5.6 prior to ECO 2Solution:Apply ECO kits.TCPIP v5.4 ECO 7 (Alpha only):ftp://ftp.itrc.hp.com/openvms_patches…-TCPIP-V0504-15ECO7-1.PCSI-DCX_AXPEXETCPIP v5.5 ECO 3:ftp://ftp.itrc.hp.com/openvms_patches…HP-I64VMS-TCPIP-V0505-11ECO3-1.ZIPEXEftp://ftp.itrc.hp.com/openvms_patches…EC-AXPVMS-TCPIP-V0505-11ECO3-1.ZIPEXETCPIP v5.6 ECO 2:ftp://ftp.itrc.hp.com/openvms_patches…/HP-I64VMS-TCPIP-V0506-9ECO2-1.ZIPEXEftp://ftp.itrc.hp.com/openvms_patches…DEC-AXPVMS-TCPIP-V0506-9ECO2-1.ZIPEXEProvided and/or discovered by:Reported by the vendor.Original Advisory:http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01414022

Original post by sonia

[3/5] HP TCP/IP Services for OpenVMS SSH Server Vulnerability

Related Articles:
  • [2/5] HP TCP/IP Services for OpenVMS Two Security Issues
  • [1/5] OpenVMS Local Denial of Service Vulnerability
  • [3/5] OpenVMS Denial of Service Vulnerabilities
  • [1/5] OpenVMS Exception Handling Denial of Service
  • [2/5] Microsoft Windows SharePoint Services / Office SharePoint Server Cross-Site Scripting


    • Posted in Advisories - Exploits | | [3/5] HP TCP/IP Services for OpenVMS SSH Server Vulnerability

    << [2/5] DigiDomain Multiple Cross-Site Scripting Vulnerabilities | [2/5] phpMyAdmin Username/Password Session File Information Disclosure >>

    Categories

    Archives:

    Search:

    Meta:

    © 2006 Latest 0 day exploits and vulnerabilities .