Buffer Overflow Vulnerability in HP OpenVMS Product by HP
CVE-2007-5241

Currently unrated

Key Information:

Vendor: HP
Status: Openvms
Vendor: CVE Published:; 6 October 2007

Summary

A buffer overflow vulnerability exists in the NET$CSMACD.EXE component of HP OpenVMS versions 8.3 and earlier. This flaw allows local users to execute the command 'MCR MCL SHOW CSMA-CD Port * All', which may lead to a denial of service condition by causing the system to crash. The exploit results from overwriting a Non-Paged Pool Packet, thereby compromising system stability and security.

References

http://osvdb.org/37811

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/25939

vdb-entryx_refsource_BID

http://secunia.com/advisories/27084

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Oct 6, 2007
Vulnerability Reserved
Oct 6, 2007