Privilege Escalation in OpenVMS Alpha by VMS CLI
CVE-2008-3947

Currently unrated

Key Information:

Vendor: HP
Status: Openvms
Vendor: CVE Published:; 5 September 2008

Summary

OpenVMS Alpha 8.3 contains a vulnerability in its Digital Command Language (DCL) that allows local users to exploit a flaw related to lengthy command line inputs. This flaw may permit unauthorized users to escalate their privileges, potentially compromising the security of the system. By sending specially crafted commands, a malicious actor could gain higher-level access than intended, posing significant risks to system integrity and security.

References

http://www.securitytracker.com/id?1020827

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/45047

vdb-entryx_refsource_XF

http://deathrow.vistech.net/DEFCON16/VMS.PDF

x_refsource_MISC

Timeline

Vulnerability published
Sep 5, 2008
Vulnerability Reserved
Sep 5, 2008