Vulnerabilities

CVE-2006-4537

by Fred · 05/09/2006

NET$SESSION_CONTROL.EXE in DECnet-Plus in OpenVMS ALPHA 7.3-2 and Alpha 8.2 writes a password to an audit log file when there is a successful connection after a "network breakin" event, which allows local users to obtain passwords by reading the file.

Date published : 2006-09-05

http://www.securityfocus.com/bid/19783

ftp://ftp.itrc.hp.com/openvms_patches/alpha/V7.3-2/AXP_DNVOSIECO03-V732.txt

Similar

Tags: Cybersecurity Alert