Unspecified vulnerability in (1) SYS$EI1000.EXE and (2) SYS$EI1000_MON.EXE in HP OpenVMS 8.3 and earlier allows remote attackers to cause a denial of service (machine crash) via an "oversize" packet, which is not properly discarded if "the device has no remaining buffers after receipt of the first buffer segment."
Max CVSS
4.3
EPSS Score
4.64%
Published
2007-10-06
Updated
2011-03-08
Buffer overflow in NET$CSMACD.EXE in HP OpenVMS 8.3 and earlier allows local users to cause a denial of service (machine crash) via the "MCR MCL SHOW CSMA-CD Port * All" command, which overwrites a Non-Paged Pool Packet.
Max CVSS
5.0
EPSS Score
0.28%
Published
2007-10-06
Updated
2011-03-08
The default configuration of the POP server in TCP/IP Services 5.6 for HP OpenVMS 8.3 does not log the source IP address or attempted username for login attempts, which might help remote attackers to avoid identification.
Max CVSS
5.0
EPSS Score
0.88%
Published
2007-07-12
Updated
2008-11-15
The default configuration of the POP server in TCP/IP Services 5.6 for HP OpenVMS 8.3 generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid POP usernames.
Max CVSS
5.0
EPSS Score
0.96%
Published
2007-07-12
Updated
2017-07-29
The Pascal run-time library (PAS$RTL.EXE) before 20070418 on OpenVMS for Integrity Servers 8.3, and PAS$RTL.EXE before 20070419 on OpenVMS Alpha 8.3, does not properly restore PC and PSL values, which allows local users to cause a denial of service (system crash) via certain Pascal code.
Max CVSS
4.9
EPSS Score
0.04%
Published
2007-06-04
Updated
2017-07-29
Unspecified vulnerability in HP OpenVMS for Integrity Servers 8.2-1 and 8.3 allows local users to cause a denial of service (crash) via "Program actions relating to exceptions."
Max CVSS
4.9
EPSS Score
0.04%
Published
2007-05-02
Updated
2017-07-29
6 vulnerabilities found